CVE-2023-45587 | Fortinet FortiSandbox up to 3.1.5/3.2.4/4.0.4/4.2.6/4.4.2 HTTP Request cross site scripting (FG-IR-23-360)

Inserito da Angelo Barbosa | Dic 13, 2023 | CVE

A vulnerability classified as problematic has been found in Fortinet FortiSandbox up to 3.1.5/3.2.4/4.0.4/4.2.6/4.4.2. Affected is an unknown function of the component HTTP Request Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2023-45587. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-45587 | Fortinet FortiSandbox up to 3.1.5/3.2.4/4.0.4/4.2.6/4.4.2 HTTP Request cross site scripting (FG-IR-23-360)

Post correlati

CVE-2023-52121 | NitroPack Cache & Speed Optimization for Core Web Vitals, Defer CSS & JavaScript, Lazy load Images Plugin cross-site request forgery

CVE-2023-6395 | Mock Jinja2 Template input validation

CVE-2024-2391 | EVE-NG 5.0.1-13 Lab cross site scripting (Exploit 51153)

CVE-2024-27620 | Ladder up to 0.0.21 API information disclosure