CVE-2014-4738
Fortinet FortiWeb 5.x prior to 5.2.1 is affected by CVE-2014-4738 (XSS) in the web management interface URLs /user/ldap_user/check_dlg and /user/radius_user/check_dlg due to insufficient input validation. This allows remote attackers to inject arbitrary JavaScript in an administrative browser ses...