Cross-site scripting (XSS) vulnerability in the advanced settings page in Fortinet FortiManager 5.x prior to 5.0.12 and 5.2.x prior to 5.2.3, in hardware models with a hard disk, and FortiAnalyzer 5.x prior to 5.0.13 and 5.2.x prior to 5.2.3 allows remote administrators to inject arbitrary web script or HTML via vectors related to report filters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortimanager_firmware 5.0.0 |
||
fortinet fortimanager_firmware 5.0.7 |
||
fortinet fortimanager_firmware 5.0.8 |
||
fortinet fortimanager_firmware 5.0.5 |
||
fortinet fortimanager_firmware 5.0.6 |
||
fortinet fortimanager_firmware 5.2.1 |
||
fortinet fortimanager_firmware 5.0.3 |
||
fortinet fortimanager_firmware 5.0.4 |
||
fortinet fortimanager_firmware 5.0.11 |
||
fortinet fortimanager_firmware 5.2.0 |
||
fortinet fortimanager_firmware 5.0.1 |
||
fortinet fortimanager_firmware 5.0.2 |
||
fortinet fortimanager_firmware 5.0.9 |
||
fortinet fortimanager_firmware 5.0.10 |
||
fortinet fortianalyzer_firmware 5.0.9 |
||
fortinet fortianalyzer_firmware 5.0.8 |
||
fortinet fortianalyzer_firmware 5.0.1 |
||
fortinet fortianalyzer_firmware 5.0.0 |
||
fortinet fortianalyzer_firmware 5.0.11 |
||
fortinet fortianalyzer_firmware 5.0.10 |
||
fortinet fortianalyzer_firmware 5.0.3 |
||
fortinet fortianalyzer_firmware 5.0.2 |
||
fortinet fortianalyzer_firmware 5.2.0 |
||
fortinet fortianalyzer_firmware 5.0.12 |
||
fortinet fortianalyzer_firmware 5.0.5 |
||
fortinet fortianalyzer_firmware 5.0.4 |
||
fortinet fortianalyzer_firmware 5.2.2 |
||
fortinet fortianalyzer_firmware 5.2.1 |
||
fortinet fortianalyzer_firmware 5.0.7 |
||
fortinet fortianalyzer_firmware 5.0.6 |