3 matches found
CVE-2022-35850
An improper neutralization of script-related HTML tags in a web page vulnerability CWE-80 in FortiAuthenticator versions 6.4.0 through 6.4.4, 6.3.0 through 6.3.3, all versions of 6.2 and 6.1 may allow a remote unauthenticated attacker to trigger a reflected cross site scripting XSS attack via the...
CVE-2022-35850
An improper neutralization of script-related HTML tags in a web page vulnerability CWE-80 in FortiAuthenticator versions 6.4.0 through 6.4.4, 6.3.0 through 6.3.3, all versions of 6.2 and 6.1 may allow a remote unauthenticated attacker to trigger a reflected cross site scripting XSS attack via the...
CVE-2022-35850
Summary (CVE-2022-35850) FortiAuthenticator contains a vulnerability described as improper neutralization of script-related HTML tags, enabling a reflected cross-site scripting (XSS) attack on the reset-password page. Affected versions are 6.4.0–6.4.4, 6.3.0–6.3.3, and all 6.2 and 6.1 releases. T...