QwikSec

Security Database

CVE

CWE

Training

CVE-2015-1451

Published: Feb 2, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.0 Patch 7 build 4457 allow remote authenticated users to inject arbitrary web script or HTML via the (1) WTP Name or (2) WTP Active Software Version field in a CAPWAP Join request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20150129 Fortinet FortiOS Multiple Vulnerabilities

mailing-list

x_refsource_FULLDISC

http://www.security-assessment.com/files/documents/advisory/Fortinet_FortiOS_Multiple_Vulnerabilities.pdf

x_refsource_MISC

http://www.fortiguard.com/advisory/FG-IR-15-002/

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.