Security Advisory

CVE-2024-31495

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-11 14:31:58

Last updated 2024-08-02 01:52:57

Assigner fortinet

State PUBLISHED

Description

A improper neutralization of special elements used in an sql command (sql injection) in Fortinet FortiPortal versions 7.0.0 through 7.0.6 and version 7.2.0 allows privileged user to obtain unauthorized information via the report download functionality.

← Browse all CVEs View on cve.org ↗