CVE-2017-7732 | THREATINT

Description

A reflected Cross-Site Scripting (XSS) vulnerability in Fortinet FortiMail 5.1 and earlier, 5.2.0 through 5.2.9, and 5.3.0 through 5.3.9 customized pre-authentication webmail login page allows attacker to inject arbitrary web script or HTML via crafted HTTP requests.

PUBLISHED Reserved 2017-04-12 | Published 2017-10-26 | Updated 2024-10-25 | Assigner fortinet

References

www.securitytracker.com/id/1039584 (1039584) vdb-entry

fortiguard.com/psirt/FG-IR-17-099

www.securityfocus.com/bid/101278 (101278) vdb-entry

www.securitytracker.com/id/1039584 (1039584) vdb-entry

fortiguard.com/psirt/FG-IR-17-099

www.securityfocus.com/bid/101278 (101278) vdb-entry

cve.org (CVE-2017-7732)

nvd.nist.gov (CVE-2017-7732)

Download JSON