EUVD-2022-31988

Malicious code in bioql PyPI...

EUVD-2023-30034

Malicious code in bioql PyPI...

CVE-2024-35280

A improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiDeceptor 5.3.0, FortiDeceptor 5.2.0, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions, FortiDeceptor 4.3 all versions, FortiDeceptor 4.2 all versions, FortiDeceptor 4....

CVE-2023-26209

A improper restriction of excessive authentication attempts vulnerability CWE-307 in Fortinet FortiDeceptor 3.1.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form...

Exploit for Improper Restriction of Excessive Authentication Attempts in Fortinet Fortideceptor

CVE-2023-26209 Exploit Automation Para Fins Educacionais 🚨 📌...

Fortinet FortiDeceptor Access Control Error Vulnerability

Fortinet FortiDeceptor is a cyber threat detection platform from the American company Fiat Fortinet. The platform focuses on exposing cyber threats through deception techniques, among other things. Fortinet FortiDeceptor suffers from an Access Control Error vulnerability that stems from the...

Fortinet FortiDeceptor Cross-Site Scripting Vulnerability

Fortinet FortiDeceptor is a cyber threat detection platform from the American company Fiat Fortinet. The platform focuses on exposing cyber threats through deception techniques, among other things. Fortinet FortiDeceptor cross-site scripting vulnerability, the vulnerability stems from the...

CVE-2024-35280

A improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiDeceptor 5.3.0, FortiDeceptor 5.2.0, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions, FortiDeceptor 4.3 all versions, FortiDeceptor 4.2 all versions, FortiDeceptor 4....

CVE-2024-35280

CVE-2024-35280 describes a cross-site scripting vulnerability in Fortinet FortiDeceptor, affecting versions 3.x through 5.3.0. The issue stems from improper neutralization of input during web page generation, allowing a reflected XSS in recovery endpoints. Public details are corroborated across m...

CVE-2024-35280

A improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiDeceptor 5.3.0, FortiDeceptor 5.2.0, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions, FortiDeceptor 4.3 all versions, FortiDeceptor 4.2 all versions, FortiDeceptor 4....

CVE-2024-35280

A improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiDeceptor 5.3.0, FortiDeceptor 5.2.0, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions, FortiDeceptor 4.3 all versions, FortiDeceptor 4.2 all versions, FortiDeceptor 4....

PT-2023-9683 · Fortinet · Fortisandbox +1

Name of the Vulnerable Software and Affected Versions: FortiSandbox versions 4.2.0 through 4.2.2 FortiSandbox versions 4.0.0 through 4.0.2 FortiSandbox versions prior to 3.2.3 FortiDeceptor version 4.1.0 FortiDeceptor versions 4.0.0 through 4.0.2 FortiDeceptor versions prior to 3.3.3 Description:...

The vulnerability of the Fortinet FortiDeceptor tool for detecting and responding to external and internal security threats lies in its insufficient limitation on authentication attempts. This allows attackers to trigger a service denial.

The vulnerability of the Fortinet FortiDeceptor tool for detecting and responding to external and internal security threats is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability allows a malicious actor to trigger a service failure by sending a speciall...

Authentication flaw

A improper restriction of excessive authentication attempts vulnerability CWE-307 in Fortinet FortiDeceptor 3.1.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form...

Fortinet FortiDeceptor 跨站脚本漏洞

Fortinet FortiDeceptor is a cyber threat detection platform from the American company Fiat Fortinet. The platform focuses on exposing network threats through deception techniques, among other things. A security vulnerability exists in Fortinet FortiDeceptor versions 4.2.0, 4.1.0 through 4.1.1, an...

The management interface of the Fortinet FortiDeceptor is vulnerable, allowing attackers to gain read, modify, or delete access to data. This vulnerability enables attackers to manipulate security measures in response to external and internal security threats.

The vulnerability of the management interface for detecting and responding to external and internal security threats in Fortinet’s FortiDeceptor involves errors in processing the relative path to the catalog. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain read...

Fortinet FortiDeceptor 路径遍历漏洞

Fortinet FortiDeceptor is a cyber threat detection platform from the American company Fiat Fortinet. The platform exposes cyber threats, among other things, through spoofing techniques. Fortinet FortiDeceptor suffers from a path traversal vulnerability that stems from an input validation error wh...