2021-12-08 12:39:00
fortinet
PUBLISHED
A improper neutralization of input during web page generation (cross-site scripting) in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to SAML login handler