Lucene search
K

30 matches found

Nuclei
Nuclei
added 5 hours ago38 views

Fortinet FortiWeb - Authentication Bypass to Admin Privilege

A improper handling of parameters in Fortinet FortiWeb versions 7.6.3 and below, versions 7.4.7 and below, versions 7.2.10 and below, and 7.0.10 and below may allow an unauthenticated remote attacker with non-public information pertaining to the device and targeted user to gain admin privileges o...

8.1CVSS7.4AI score0.1067EPSS
Exploits4References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.13 views

CVE-2022-42473

A missing authentication for a critical function vulnerability in Fortinet FortiSOAR 6.4.0 - 6.4.4 and 7.0.0 - 7.0.3 and 7.2.0 allows an attacker to disclose information via logging into the database using a privileged account without a password...

5.5CVSS6.7AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.11 views

CVE-2023-45590

An improper control of generation of code 'code injection' in Fortinet FortiClientLinux version 7.2.0, 7.0.6 through 7.0.10 and 7.0.3 through 7.0.4 allows attacker to execute unauthorized code or commands via tricking a FortiClientLinux user into visiting a malicious website...

9.6CVSS7.6AI score0.01524EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-12269

Malware in sbrugna...

4.8CVSS5.1AI score0.00714EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-3658

Malware in sbrugna...

9.8CVSS9.5AI score0.02343EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16371

Malware in sbrugna...

8.1CVSS8.1AI score0.0185EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-16250

Malware in sbrugna...

7.8CVSS7.7AI score0.00511EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-8701

Malware in sbrugna...

6.1CVSS6.3AI score0.00871EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-12267

Malware in sbrugna...

6.1CVSS6.2AI score0.00943EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-11935

Malware in sbrugna...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-29546

Malicious code in bioql PyPI...

7.5CVSS7.1AI score0.00906EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-44542

Malicious code in bioql PyPI...

8.8CVSS8AI score0.00927EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54267

Malicious code in bioql PyPI...

7.2CVSS6.4AI score0.00535EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-29375

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00526EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-45546

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00217EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31239

Malicious code in bioql PyPI...

6.7CVSS6.6AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/19 3:51 p.m.7 views

CVE-2025-25257

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.7, FortiWeb 7.2.0 through 7.2.10, FortiWeb 7.0.0 through 7.0.10 allows an unauthenticated attacker to execu...

9.8CVSS9.8AI score0.9671EPSS
Exploits18References1
CVE
CVE
added 2025/05/28 7:54 a.m.65 views

CVE-2025-47295

CVE-2025-47295 describes a buffer over-read in Fortinet FortiOS FGFM daemon that could crash FGFM when processing a specially crafted request. Affected FortiOS versions include 7.0.0–7.0.14, 7.2.0–7.2.7, and 7.4.0–7.4.3. The underlying issue is a lack of proper input validation leading to a read ...

3.7CVSS7.2AI score0.00626EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:52 a.m.7 views

CVE-2024-31495

A improper neutralization of special elements used in an sql command 'sql injection' in Fortinet FortiPortal versions 7.0.0 through 7.0.6 and version 7.2.0 allows privileged user to obtain unauthorized information via the report download functionality...

4.3CVSS6.7AI score0.00526EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:4 a.m.8 views

CVE-2024-47566

A improper limitation of a pathname to a restricted directory 'path traversal' CWE-23 in Fortinet FortiRecorder version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to delete files from the underlying filesystem via crafted CLI requests...

6CVSS6.7AI score0.00192EPSS
Exploits0References1
Rows per page
Query Builder