Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerabilities [CWE-89] in FortiADC management interface 7.0.0 through 7.0.1, 5.0.0 through 6.2.2 may allow an authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiADC SQL注入漏洞
Vulnerability Description
Fortinet FortiADC是美国飞塔(Fortinet)公司的一款应用交付控制器。 Fortinet FortiADC存在SQL注入漏洞,该漏洞源于对 FortiADC 管理界面中用户提供的数据的清理不足。远程攻击者利用该漏洞可以向受影响的应用程序发送特制请求,并在应用程序数据库中执行任意 SQL 命令。
CVSS Information
N/A
Vulnerability Type
N/A