ghsa-p3rg-6qw3-3jx8
Vulnerability from github
Published
2022-05-17 02:13
Modified
2022-05-17 02:13
Severity
Details
Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
{ "affected": [], "aliases": [ "CVE-2016-3195" ], "database_specific": { "cwe_ids": [ "CWE-79" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2016-08-19T21:59:00Z", "severity": "MODERATE" }, "details": "Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.", "id": "GHSA-p3rg-6qw3-3jx8", "modified": "2022-05-17T02:13:21Z", "published": "2022-05-17T02:13:21Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3195" }, { "type": "WEB", "url": "http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-client-side-xss-vulnerability" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/92453" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1036550" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "type": "CVSS_V3" } ] }
Loading...