PSIRT Advisory

Cross Site Scripting Vulnerability in FortiWeb

Summary

FortiWeb fails to sanitize user input. The vulnerability allows an attacker to inject script code.

Description

FortiWeb fails to sanitize user input. The vulnerability allows an attacker to inject script code.

Impact

Cross Site Scripting

Affected Products

FortiWeb 4000C, 3000C/3000CFsx, 1000C, 400C & Virtual Appliance.

Solutions

Sanitize user input