|
Dernières alertes de sécuritéFortiSandbox - XSS on delete endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-311 Multiple improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] FortiSandbox - Reflected Cross Site Scripting (XSS) on download progress endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-215 An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] FortiSandbox - Arbitrary file delete> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-280 An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in FortiSandbox may allow a low privileged attacker to delete arbitrary files via crafted http requests. [...] FortiSandbox - Reflected Cross Site Scripting (XSS) on the "file ondemand" rendering endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-273 An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] | page 1 | page suivante | |
|
connected from address localhost (127.0.0.1:58766)
using Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
served for Ironie.org by Debian GNU/Linux