EPSS
Percentile
22.7%
A URL redirection to untrusted site (‘Open Redirect’) [CWE-601] in FortiWeb may allow an authenticated attacker to use the device as proxy to reach any protected host via crafted HTTP requests.