Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFortinetCVELIST:CVE-2019-5590
HistoryAug 28, 2019 - 4:45 p.m.

CVE-2019-5590

2019-08-2816:45:15
fortinet
www.cve.org
2

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

38.2%

JSON

The URL part of the report message is not encoded in Fortinet FortiWeb 6.0.2 and below which may allow an attacker to execute unauthorized code or commands (Cross Site Scripting) via attack reports generated in HTML form.

CNA Affected

[
  {
    "product": "FortiWeb",
    "vendor": "Fortinet",
    "versions": [
      {
        "status": "affected",
        "version": "6.0.2 and below"
      }
    ]
  }
]

Related

prion 1
cve 1
nvd 1
fortinet 1
prion
prion
Cross site scripting
2019-08-28 17:15:00
cve
cve
CVE-2019-5590
2019-08-28 17:15:09
nvd
nvd
CVE-2019-5590
2019-08-28 17:15:09
fortinet
fortinet
Cross-Site-Scripting (XSS) vulnerabilty in Fortiweb reports
2019-06-12 00:00:00

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

38.2%

JSON
Related for CVELIST:CVE-2019-5590
prion1cve1nvd1fortinet1