Unrated severityNVD Advisory· Published Aug 28, 2019· Updated Oct 25, 2024
CVE-2019-5590
CVE-2019-5590
Description
The URL part of the report message is not encoded in Fortinet FortiWeb 6.0.2 and below which may allow an attacker to execute unauthorized code or commands (Cross Site Scripting) via attack reports generated in HTML form.
Affected products
2Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/108786mitrevdb-entryx_refsource_BID
- fortiguard.com/advisory/FG-IR-19-070mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.