2 matches found
CVE-2022-35847
An improper neutralization of special elements used in a template engine vulnerability CWE-1336 in FortiSOAR management interface 7.2.0, 7.0.0 through 7.0.3, 6.4.0 through 6.4.4 may allow a remote and authenticated attacker to execute arbitrary code via a crafted payload...
CVE-2022-35847
The CVE-2022-35847 issue affects FortiSOAR management interface across multiple releases: 6.4.0–6.4.4, 7.0.0–7.0.3, and 7.2.0. It stems from improper neutralization of special elements used in a template engine (CWE-1336). A remote, authenticated attacker could craft a payload to execute arbitrar...