FortiGate Cross-Site Scripting Vulnerability Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-14-003 Final 1 1 2014-02-03T00:00:00 Current version 2014-02-03T00:00:00 2014-02-03T00:00:00 FortiOS 5.0.5 and earlier versions contain a cross-site scripting vulnerability. The mkey parameter in the URL /firewall/schedule/recurrdlg is vulnerable to reflected cross-site scripting attack. Cross-site scripting FortiOS 5.0.5 and lower. Upgrade to FortiOS 5.0.6 or higher. William Costa CVE-2013-7182 https://fortiguard.fortinet.com/psirt/FG-IR-14-003 FortiGate Cross-Site Scripting Vulnerability Reference>