Vulnerabilities (CVE)

Filtered by vendor Fortinet Subscribe

Filtered by product Fortiweb

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 54 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2013-7181	1 Fortinet	1 Fortiweb	2015-07-27	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in user/ldap_user/add in Fortinet FortiOS 5.0.3 allows remote attackers to inject arbitrary web script or HTML via the filter parameter.
CVE-2014-1956	1 Fortinet	1 Fortiweb	2014-07-18	5.0 MEDIUM	N/A
CRLF injection vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
CVE-2014-1955	1 Fortinet	1 Fortiweb	2014-07-18	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-1957	1 Fortinet	1 Fortiweb	2014-07-18	6.5 MEDIUM	N/A
FortiGuard FortiWeb before 5.0.3 allows remote authenticated users to gain privileges via unspecified vectors.