4 matches found
CVE-2021-32597
Multiple improper neutralization of input during web page generation CWE-79 in FortiManager and FortiAnalyzer versions 7.0.0, 6.4.5 and below, 6.2.7 and below user interface, may allow a remote authenticated attacker to perform a Stored Cross Site Scripting attack XSS by injecting malicious paylo...
CVE-2021-32597
Multiple improper neutralization of input during web page generation CWE-79 in FortiManager and FortiAnalyzer versions 7.0.0, 6.4.5 and below, 6.2.7 and below user interface, may allow a remote authenticated attacker to perform a Stored Cross Site Scripting attack XSS by injecting malicious paylo...
CVE-2021-32597
CVE-2021-32597 concerns a cross-site scripting (XSS) vulnerability in Fortinet’s FortiManager and FortiAnalyzer. The connected sources identify a vulnerability in the user interface that can allow a remote authenticated attacker to perform a Stored XSS by injecting a malicious payload into GET pa...
CVE-2021-32597
Multiple improper neutralization of input during web page generation CWE-79 in FortiManager and FortiAnalyzer versions 7.0.0, 6.4.5 and below, 6.2.7 and below user interface, may allow a remote authenticated attacker to perform a Stored Cross Site Scripting attack XSS by injecting malicious paylo...