Showing results for HTML/ScrInject.B!tr
It is possible to inject malicious script through the DHCP HOSTNAME option. The malicious script code is injected into the device's "DHCP Monitor" page (System->Monitor->DHCP Monitor) on the web-based...
The HTML source code of the FortiWeb SNMPv3 user edit webui page includes the user's password in cleartext.
An improper neutralization of input vulnerability in FortiAnalyzer and FortiTester may allow a remote authenticated attacker to inject script related HTML tags via the Storage Connectors Name Parameter...