3 matches found
Fortinet FortiWeb Open redirect in redir handler due to direct input interpolation (FG-IR-21-168)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-168 advisory. - A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below,...
CVE-2021-43064
A url redirection to untrusted site 'open redirect' in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to use the device as a proxy and reach external or protected hosts via redirection handlers...
CVE-2021-43064
CVE-2021-43064 concerns a Fortinet FortiWeb open redirect vulnerability. The issue occurs in FortiWeb versions 6.4.1/6.4.0, 6.3.15 and below, and 6.2.6 and below, where redirection handlers can be exploited to proxy through the device to external or protected hosts due to an input/interpolation f...