2 matches found
Fortinet FortiOS 5.2.x < 5.2.3 Multiple XSS
The remote FortiGate device is running a version of FortiOS that is 5.2.x prior to 5.2.3. It is, therefore, affected by multiple cross-site scripting vulnerabilities : - Multiple cross-site scripting vulnerabilities exists due to improper validation of user-supplied input to the user group and vp...
CVE-2014-8616
Fortinet FortiOS 5.2.x is affected by CVE-2014-8616 (and related CVE-2015-1880) due to multiple cross-site scripting vulnerabilities. Affected versions are FortiOS before 5.2.3. Exploitation occurs via crafted requests to vulnerable surfaces (notably the user group and VPN template menus, and the...