Fortimail@5.0.4 Security Vulnerabilities and Issues — Fortimail@5.0.4 CVE List

Lucene search

FortinetFortimail5.0.4

3 matches found

CVE•added 2017/10/26 1:29 p.m.•45 views

CVE-2017-7732

A reflected Cross-Site Scripting (XSS) vulnerability in Fortinet FortiMail 5.1 and earlier, 5.2.0 through 5.2.9, and 5.3.0 through 5.3.9 customized pre-authentication webmail login page allows attacker to inject arbitrary web script or HTML via crafted HTTP requests.

6.1CVSS5.8AI score0.00852EPSS

CVE•added 2015/03/04 7:59 p.m.•38 views

CVE-2014-8617

Cross-site scripting (XSS) vulnerability in the Web Action Quarantine Release feature in the WebGUI in Fortinet FortiMail before 4.3.9, 5.0.x before 5.0.8, 5.1.x before 5.1.5, and 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via the release parameter to module/r...

4.3CVSS5.7AI score0.00296EPSS

CVE•added 2015/04/14 6:59 p.m.•36 views

CVE-2015-3293

FortiMail 5.0.3 through 5.2.3 allows remote administrators to obtain credentials via the "diag debug application httpd" command.

4CVSS6.8AI score0.00236EPSS