CVE-2018-1356
Fortinet FortiSandbox is affected by a reflected XSS (CVE-2018-1356) in the file scan component; vulnerability stems from lack of input validation on the back_url parameter in FortiSandbox versions before 3.0. An attacker could cause client-side code execution in the context of a user session. Th...