CVE-2019-5590
CVE-2019-5590
The URL part of the report message is not encoded in Fortinet FortiWeb 6.0.2 and below which may allow an attacker to execute unauthorized code or commands (Cross Site Scripting) via attack reports generated in HTML form.
Productos afectados
Fortinet · FortiWeb¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →