3 matches found
CVE-2024-55593
FortiWeb by Fortinet is affected by an SQL injection due to improper neutralization of special elements in SQL commands. Affected versions are FortiWeb 6.3.17 through 7.6.1, with information disclosure possible via crafted SQL queries. The vulnerability enables attackers who can log in to the For...
CVE-2024-55593
A improper neutralization of special elements used in an sql command 'sql injection' in Fortinet FortiWeb versions 6.3.17 through 7.6.1 allows attacker to gain information disclosure via crafted SQL queries...
Fortinet FortiWeb sqli (FG-IR-24-465)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-465 advisory. - A improper neutralization of special elements used in an sql command 'sql injection' in Fortinet FortiWeb versions 6.3.17...