EUVD-2016-6044

Malware in sbrugna...

CVE-2016-5092

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated administrators with read and write privileges to read arbitrary files by leveraging the autolearn feature...

CVE-2016-5092

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated administrators with read and write privileges to read arbitrary files by leveraging the autolearn feature...

Directory traversal

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated administrators with read and write privileges to read arbitrary files by leveraging the autolearn feature...

CVE-2016-5092

Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated administrators with read and write privileges to read arbitrary files by leveraging the autolearn feature...

CVE-2016-5092

Fortinet FortiWeb is affected by CVE-2016-5092 (path traversal) where authenticated administrators with read/write privileges can read arbitrary files via the autolearn feature. The vulnerability exists in FortiWeb versions before 5.5.3. Reported by NVD with CVSS v2 base 4.0 (NETWORK, LOW complex...

Fortinet FortiWeb Path Traversal Vulnerability (FG-IR-16-009)

Fortinet FortiWeb is prone to a path traversal vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:fortinet:fortiweb";...

Fortinet FortiWeb Path Traversal Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

Fortiweb path traversal vulnerability

A path traversal vulnerability allows an administrator account with read and write privileges to read arbitrary files using the autolearn feature...

Fortinet FortiWeb 5.1.2 < 5.3.5 Autolearn Configuration Multiple XSS

The remote FortiWeb device is running a software version greater than or equal to 5.1.2 and less than 5.3.5. It is, therefore, affected by multiple cross-site scripting vulnerabilities due to improper validation of user-supplied input to the autolearn configuration page. An attacker can exploit...

Fortinet FortiWeb Multiple Reflected XSS Vulnerabilities (FG-IR-15-005)

Fortinet FortiWeb is prone to multiple reflected cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

CVE-2014-8619

Cross-site scripting XSS vulnerability in the autolearn configuration page in Fortinet FortiWeb 5.1.2 through 5.3.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...