Lucene search
K

7 matches found

The Hacker News
The Hacker News
added 2026/04/14 5:39 a.m.7 views

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2026-21643 CVSS score: 9.1 - An SQL injection...

9.8CVSS7.4AI score0.94085EPSS
Exploits5
CISA KEV Catalog
CISA KEV Catalog
added 2026/04/13 12:0 a.m.11 views

Fortinet FortiClient EMS SQL Injection Vulnerability

Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests...

9.8CVSS7.7AI score0.94085EPSS
In wildExploits1
CISA
CISA
added 2026/04/06 12:0 p.m.10 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-35616link is external - Fortinet FortiClient EMS Improper Access Control Vulnerability This type of vulnerability is a frequent attack vector for malicious...

9.8CVSS6AI score0.88505EPSS
In wildExploits8References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Fortinet FortiClient EMS Authenticated SQLi (FG-IR-25-735)

The version of Fortinet FortiClient EMS installed on the remote host is affected by a vulnerability as referenced in the FG-IR-25-735 advisory: - An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 in FortiClientEMS may allow an authenticated...

7.2CVSS6.1AI score0.06992EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/13 12:0 a.m.28 views

Fortinet FortiClient EMS < 7.2.5 (FG-IR-23-362)

The version of Fortinet FortiClient EMS installed on the remote host is prior to 7.2.5. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-362 advisory. - A improper limitation of a pathname to a restricted directory 'path traversal' in Fortinet FortiClientEMS versions...

6CVSS6AI score0.00741EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/03/18 8:50 p.m.658 views

Exploit for SQL Injection in Fortinet Forticlient_Enterprise_Management_Server

CVE-2023-48788 Fortinet FortiClient EMS SQL Injection Vulnerab...

9.8CVSS10AI score0.97591EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2024/03/14 12:0 a.m.72 views

Fortinet FortiClient EMS 7.0.x < 7.0.11 / 7.2.x < 7.2.3 (FG-IR-24-007)

The version of Fortinet FortiClient EMS installed on the remote host is prior to 7.0.11 or 7.2.3. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-007 advisory. - A improper neutralization of special elements used in an sql command 'sql injection' in Fortinet...

9.8CVSS7.5AI score0.97591EPSS
Exploits4References2
Rows per page
Query Builder