A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote attacker to read the content of memory and retrieve sensitive data via the redir parameter.
[
{
"product": "Fortinet FortiWeb",
"vendor": "Fortinet",
"versions": [
{
"status": "affected",
"version": "FortiWeb 6.3.0 through 6.3.5"
}
]
}
]