A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HFortinet Fortiwlm
APPFortinet8.5.0 – 8.5.48.6.0 – 8.6.5
Powiązane podatności
Path Traversal w Fortinet FortiWLM umożliwiający zdalne wykonanie kodu
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiWLM ve...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...