Back to search
CVE-2018-9186
Published: May 31, 2018
Modified: Oct 25, 2024
PUBLISHED
Description
A cross-site scripting (XSS) vulnerability in Fortinet FortiAuthenticator in versions 4.0.0 to before 5.3.0 "CSRF validation failure" page allows attacker to execute unauthorized script code via inject malicious scripts in HTTP referer header.
| Vendor | Product | Versions |
|---|---|---|
Fortinet, Inc. | FortiAuthenticator | affected below 5.3.0 versions |
References
https://fortiguard.com/advisory/FG-IR-18-059
x_refsource_CONFIRM
104371
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now