4 matches found
CVE-2015-3620
Cross-site scripting XSS vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-3620
CVE-2015-3620 is a cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer FortiOS (5.0.x < 5.0.11) and FortiManager FortiOS (5.0.3–5.0.10, 5.2.x View Dataset page. It arises from improper sanitization of input to the sql-query parameter, allowing remote, unauthenticated attackers ...
Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability
Document Title: =============== Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1354 Security Bulletin FortiGuard: http://www.fortiguard.com/advisory/FG-IR-15-005/ PSI...
Fortinet FortiAnalyzer&FortiManager - XSS Vulnerability
Document Title: =============== Fortinet FortiAnalyzer&FortiManager - XSS Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1354 Security Bulletin FortiGuard: http://www.fortiguard.com/advisory/FG-IR-15-005/ PSIRT ID: 1327458...