3 matches found
CVE-2019-5588
A reflected Cross-Site-Scripting XSS vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4 under SSL VPN web portal may allow an attacker to execute unauthorized malicious script code via the "err" parameter of the error process HTTP requests...
CVE-2019-5588
A reflected Cross-Site-Scripting XSS vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4 under SSL VPN web portal may allow an attacker to execute unauthorized malicious script code via the "err" parameter of the error process HTTP requests...
CVE-2019-5588
CVE-2019-5588 is a reflected Cross-Site Scripting (XSS) vulnerability in Fortinet FortiOS FortiGate SSL VPN web portal, affecting FortiOS versions 6.0.0–6.0.4. The issue stems from insufficient input validation on the error page, allowing an attacker to inject script via the err parameter in HTTP...