A cross-site scripting (XSS) vulnerability in Fortinet FortiAuthenticator in versions 4.0.0 to before 5.3.0 "CSRF validation failure" page allows attacker to execute unauthorized script code via inject malicious scripts in HTTP referer header.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2018-05-31T22:00:00Z
Updated: 2024-09-17T04:14:53.268Z
Reserved: 2018-04-02T00:00:00
Link: CVE-2018-9186
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-05-31T22:29:00.253
Modified: 2019-04-22T18:32:14.473
Link: CVE-2018-9186
Redhat
No data.