Security Advisory

CVE-2021-22122

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-08 15:55:39

Last updated 2024-10-25 14:00:24

Assigner fortinet

State PUBLISHED

Description

An improper neutralization of input during web page generation in FortiWeb GUI interface 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points.

← Browse all CVEs View on cve.org ↗