2 matches found
CVE-2022-38374
A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiADC 7.0.0 - 7.0.2 and 6.2.0 - 6.2.4 allows an attacker to execute unauthorized code or commands via the URL and User fields observed in the traffic and event logviews...
Fortinet FortiADC 操作系统命令注入漏洞
Fortinet FortiADC is an application delivery controller from Fortinet, Inc. A security vulnerability exists in several versions of Fortinet FortiADC due to incorrect handling of special elements used in os commands, which could be exploited by an attacker to execute unauthorized code or commands...