FortiWeb Unauthenticated XSS Vulnerability CVE-2021-22122 Scanner

Details

Stay Up To Date

Follow @secforeveryone

Asset Type

DOMAIN,IP,URL

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

FortiWeb Unauthenticated XSS Vulnerability CVE-2021-22122 Scanner Detail

FortiWeb GUI interface may allow an unauthenticated, remote attacker to perform a reflected cross site scripting attack (XSS) by injecting malicious payload in different vulnerable API end-points.

Affected versions:

6.2.x to 6.3.x

Some Advice for Common Problems

Upgrade to FortiWeb versions 6.3.8 or above. Upgrade to FortiWeb versions 6.2.4 or above.

Need a Full Assessment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service