Lucene search
+L

5 matches found

Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.19 views

PT-2026-45387

A vulnerability was discovered on Stormshield Network Security 4.3.0 to 4.3.41, 4.8.0 to 4.8.15, 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by executing a script on the victim's machine. The risks include the theft of...

5.3CVSS5.9AI score0.00183EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 3:38 p.m.7 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS5.8AI score0.16739EPSS
Exploits2References2Affected Software2
CVE
CVE
added 2026/04/14 3:38 p.m.59 views

CVE-2026-39813

Fortinet FortiSandbox is affected by CVE-2026-39813, a path traversal vulnerability that enables privilege escalation via crafted requests (example path traversal: '../filedir'). Affected versions include FortiSandbox 4.4.0–4.4.8 and 5.0.0–5.0.5. Reported impact is high/critical, with potential f...

9.8CVSS5.8AI score0.16739EPSS
In wildExploits2References1Affected Software1
CVE
CVE
added 2026/04/14 3:38 p.m.23 views

CVE-2026-27316

The CVE-2026-27316 entry describes an insufficiently protected credentials vulnerability affecting Fortinet FortiSandbox: 5.0.0–5.0.5, FortiSandbox 4.4 (all versions), and FortiSandbox PaaS 5.0.1–5.0.5. Root cause: credentials stored or exposed in a way that can be read via client-side inspection...

2.7CVSS5.8AI score0.00305EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.15 views

PT-2026-32692

Name of the Vulnerable Software and Affected Versions FortiSandbox versions 5.0.0 through 5.0.5 FortiSandbox versions 4.4.0 through 4.4.8 Description A path traversal issue exists where specially crafted HTTP requests can be used to bypass restricted directory access. This flaw allows a remote...

10CVSS8.7AI score0.16739EPSS
Exploits2References63
Rows per page
Query Builder