A cross-site scripting (XSS) vulnerability in Fortinet FortiAuthenticator in versions 4.0.0 to before 5.3.0 "CSRF validation failure" page allows attacker to execute unauthorized script code via inject malicious scripts in HTTP referer header.
Metrics
Affected Vendors & Products
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2018-20783 | A cross-site scripting (XSS) vulnerability in Fortinet FortiAuthenticator in versions 4.0.0 to before 5.3.0 "CSRF validation failure" page allows attacker to execute unauthorized script code via inject malicious scripts in HTTP referer header. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Fri, 25 Oct 2024 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published:
Updated: 2024-10-25T14:09:37.923Z
Reserved: 2018-04-02T00:00:00
Link: CVE-2018-9186
Vulnrichment
Updated: 2024-08-05T07:17:51.677Z
NVD
Status : Modified
Published: 2018-05-31T22:29:00.253
Modified: 2024-11-21T04:15:08.570
Link: CVE-2018-9186
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses