A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiWLM version 8.6.1 and below allows attacker to store malicious javascript code in the device and trigger it via crafted HTTP requests
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-114 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2021-12-08T11:29:46
Updated: 2024-08-04T02:59:30.978Z
Reserved: 2021-09-13T00:00:00
Link: CVE-2021-41029
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-12-08T12:15:07.787
Modified: 2021-12-09T19:44:47.333
Link: CVE-2021-41029
Redhat
No data.