An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows malicious user to execute unauthorized code or commands via the url parameter.
fortinet fortiportal