Medium severity6.1NVD Advisory· Published May 27, 2017· Updated Jun 17, 2026
CVE-2017-3129
CVE-2017-3129
Description
A Cross-Site Scripting vulnerability in Fortinet FortiWeb versions 5.7.1 and below allows attacker to execute unauthorized code or commands via an improperly sanitized POST parameter in the FortiWeb Site Publisher feature.
Affected products
2- Fortinet, Inc./Fortinet FortiWebv5Range: FortiWeb versions 5.7.1 and below
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/98382nvdThird Party AdvisoryVDB Entry
- fortiguard.com/psirt/FG-IR-17-076nvdVendor Advisory
News mentions
0No linked articles in our index yet.