CVE-2017-14191
Fortinet FortiWeb is affected by CVE-2017-14191. In FortiWeb 5.6.0 up to but not including 6.1.0, operating under Signed Security Mode, an improper access control vulnerability allows an attacker to bypass the cookie protection by removing FortiWeb’s own protection session cookie. Impact stated: ...