Unrated severityNVD Advisory· Published Jan 14, 2021· Updated Oct 25, 2024
CVE-2020-29015
CVE-2020-29015
Description
A blind SQL injection in the user interface of FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to execute arbitrary SQL queries or commands by sending a request with a crafted Authorization header containing a malicious SQL statement.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- www.fortiguard.com/psirt/FG-IR-20-124mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.