Fortinet FortiWeb is a Web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures Web applications and protects sensitive database content. A cross-site scripting vulnerability exists, which stems from the invalidation of multiple incorrect inputs during web page generation that could allow an unauthenticated user to inject malicious javascript code into a response web page via a crafted request to a device error handler. No detailed vulnerability details are currently available.