VYPR
Unrated severityNVD Advisory· Published Mar 12, 2020· Updated Oct 25, 2024

CVE-2019-16156

CVE-2019-16156

Description

An Improper Neutralization of Input vulnerability in the Anomaly Detection Parameter Name in Fortinet FortiWeb 6.0.5, 6.2.0, and 6.1.1 may allow a remote unauthenticated attacker to perform a Cross Site Scripting attack (XSS).

Affected products

2
  • Fortinet/Fortiwebllm-fuzzy2 versions
    6.0.5, 6.1.1, 6.2.0+ 1 more
    • (no CPE)range: 6.0.5, 6.1.1, 6.2.0
    • (no CPE)range: 6.0.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.