2 matches found
CVE-2023-36637
An improper neutralization of input during web page generation vulnerability CWE-79 in FortiMail version 7.2.0 through 7.2.2 and before 7.0.5 allows an authenticated attacker to inject HTML tags in FortiMail's calendar via input fields...
CVE-2023-36637
Vulnerability summary: CVE-2023-36637 affects Fortinet FortiMail, specifically versions 7.2.0 through 7.2.2 and before 7.0.5. The issue is an improper neutralization of input during web page generation (CWE-79). An authenticated attacker can inject HTML tags into FortiMail’s calendar via input fi...