Reflected XSS Vulnerability in Fortinet FortiSandbox before 3.0

Reflected XSS Vulnerability in Fortinet FortiSandbox before 3.0

CVE-2018-1356 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiSandbox before 3.0 may allow an attacker to execute unauthorized code or commands via the back_url parameter in the file scan component.

Learn more about our Cis Benchmark Audit For Fortinet.