Количество 3
Количество 3
CVE-2021-22122
An improper neutralization of input during web page generation in FortiWeb GUI interface 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points.
GHSA-6xx4-8wj3-477v
An improper neutralization of input during web page generation in FortiWeb GUI interface 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points.
BDU:2022-06595
Уязвимость графического интерфейса межсетевого экрана веб-приложений FortiWeb, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-22122 An improper neutralization of input during web page generation in FortiWeb GUI interface 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points. | CVSS3: 6.1 | 58% Средний | около 5 лет назад |
| GHSA-6xx4-8wj3-477v An improper neutralization of input during web page generation in FortiWeb GUI interface 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points. | 58% Средний | больше 3 лет назад | |
 | BDU:2022-06595 Уязвимость графического интерфейса межсетевого экрана веб-приложений FortiWeb, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 6.1 | 58% Средний | около 5 лет назад |
Уязвимостей на страницу