exploitDog

GHSA-f2cw-h779-q8jh

Опубликовано: 16 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Multiple improper neutralization of input during web page generation ('Cross-site Scripting') vulnerabilities [CWE-79] in Fortinet FortiNAC portal UI before 9.4.1 allows an attacker to perform an XSS attack via crafted HTTP requests.

Multiple improper neutralization of input during web page generation ('Cross-site Scripting') vulnerabilities [CWE-79] in Fortinet FortiNAC portal UI before 9.4.1 allows an attacker to perform an XSS attack via crafted HTTP requests.

Ссылки

EPSS

Процентиль: 74%

0.00825

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-38376

CVSS3: 6.1

nvd

почти 3 года назад

Multiple improper neutralization of input during web page generation ('Cross-site Scripting') vulnerabilities [CWE-79] in Fortinet FortiNAC portal UI before 9.4.1 allows an attacker to perform an XSS attack via crafted HTTP requests.

EPSS

Процентиль: 74%

0.00825

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79