Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiGate UTM WAF appliances with FortiOS 4.3.x before 4.3.6 allow remote attackers to inject arbitrary web script or HTML via vectors involving the (1) Endpoint Monitor, (2) Dialup List, or (3) Log&Report Display modules, or the fields_sorted_opt parameter to (4) user/auth/list or (5) endpointcompliance/app_detect/predefined_sig_list.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiGate UTM WAF设备FortiOS 跨站脚本漏洞
Vulnerability Description
Fortinet FortiGate UTM WAF appliances是美国飞塔(Fortinet)公司的一款防火墙设备。FortiOS是运行在其中的一套操作系统。 Fortinet FortiGate UTM WAF设备中的FortiOS 4.3.6之前的4.3.x版本存在多个跨站脚本漏洞。远程攻击者可利用该漏洞注入任意的Web脚本或HMTL。
CVSS Information
N/A
Vulnerability Type
N/A