Description
An Improper Neutralization of Input vulnerability in the Anomaly Detection Parameter Name in Fortinet FortiWeb 6.0.5, 6.2.0, and 6.1.1 may allow a remote unauthenticated attacker to perform a Cross Site Scripting attack (XSS).
Affected products
- fortinet / Fortinet FortiWeb6.0.5 – 6.0.5
- fortinet / Fortinet FortiWeb6.2.0 – 6.2.0
- fortinet / Fortinet FortiWeb6.1.1 – 6.1.1