3 matches found
CVE-2019-16154
An improper neutralization of input during web page generation in FortiAuthenticator WEB UI 6.0.0 may allow an unauthenticated user to perform a cross-site scripting attack XSS via a parameter of the logon page...
CVE-2019-16154
An improper neutralization of input during web page generation in FortiAuthenticator WEB UI 6.0.0 may allow an unauthenticated user to perform a cross-site scripting attack XSS via a parameter of the logon page...
CVE-2019-16154
FortiAuthenticator WEB UI 6.0.0 is vulnerable to cross-site scripting due to improper neutralization of input during web page generation on the login page. An unauthenticated user could exploit a logon-page parameter to execute client-side code. This is documented across multiple sources (NVD, Re...