2 matches found
CVE-2015-3612
CVE-2015-3612 describes a Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 5.2.1 and earlier and 5.0.10 and earlier, due to improper validation of client data in the FortiWeb auto update service page. The issue affects the web interface and can allow execution of client-side code...
Fortinet FortiManager 5.0.x < 5.0.11 / 5.2.x < 5.2.2 Multiple Vulnerabilities (FG-IR-15-011)
The remote host is running a version of FortiManager that is 5.0.x prior to 5.0.11 or 5.2.x prior 5.2.2. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists that allows an unauthenticated, remote attacker to inject arbitrary OS commands. CVE-2015-3611 - A...