Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.6 views

CVE-2021-41026

A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow an authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests...

6.5CVSS6.8AI score0.0089EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-2010

Malware in sbrugna...

6.5CVSS6.3AI score0.01078EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-22814

Malware in sbrugna...

7.2CVSS6.9AI score0.00816EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-29719

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01465EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54079

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00485EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-52820

Malicious code in bioql PyPI...

2.7CVSS4.2AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:57 p.m.5 views

CVE-2021-36193

Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted commands...

7.2CVSS7.7AI score0.00816EPSS
Exploits0References1
CNVD
CNVD
added 2025/02/17 12:0 a.m.10 views

Fortinet FortiWeb OS Command Injection Vulnerability (CNVD-2025-03519)

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content...

7.2CVSS8AI score0.02316EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.7 views

Fortinet FortiWeb xss (FG-IR-21-118)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-118 advisory. - A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiWeb version 6.4.1 and...

6.1CVSS6.6AI score0.00652EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/16 6:6 p.m.6 views

CVE-2023-23779

Multiple improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below may allow an authenticated attacker to execute unauthorized code or commands via crafted...

6.8CVSS7.5AI score0.01324EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/03 12:0 a.m.8 views

Fortinet FortiWeb Command Execution Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

9.8CVSS7.6AI score0.01561EPSS
Exploits0References1
Rows per page
Query Builder