A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4.0 to 5.4.12, 5.2 and below and Fortinet FortiProxy 2.0.0, 1.2.8 and below under SSL VPN web portal allows attacker to execute unauthorized malicious script code via the error or message handling parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2019-06-04T20:12:06
Updated: 2024-08-05T09:00:34.992Z
Reserved: 2018-07-06T00:00:00
Link: CVE-2018-13380
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-06-04T21:29:00.267
Modified: 2021-04-06T12:56:42.507
Link: CVE-2018-13380
Redhat
No data.