The Web User Interface (WebUI) in FortiOS 5.0.x prior to 5.0.13, 5.2.x prior to 5.2.3, and 5.4.x prior to 5.4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via the "redirect" parameter to "login."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortios 5.0.1 |
||
fortinet fortios 5.0.0 |
||
fortinet fortios 5.2.2 |
||
fortinet fortios 5.2.1 |
||
fortinet fortios 5.0.10 |
||
fortinet fortios 5.0.9 |
||
fortinet fortios 5.0.8 |
||
fortinet fortios 5.0.7 |
||
fortinet fortios 5.0.11 |
||
fortinet fortios 5.0.6 |
||
fortinet fortios 5.0.4 |
||
fortinet fortios 5.0.2 |
||
fortinet fortios 5.2.0 |
||
fortinet fortios 5.0.12 |
||
fortinet fortios 5.0.5 |
||
fortinet fortios 5.0.3 |
||
fortinet fortios 5.4 |