|
Dernières alertes de sécuritéFortiSandbox - XSS on delete endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-311 Multiple improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] FortiSandbox - Reflected Cross Site Scripting (XSS) on download progress endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-215 An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] FortiSandbox - Arbitrary file delete> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-280 An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in FortiSandbox may allow a low privileged attacker to delete arbitrary files via crafted http requests. [...] FortiSandbox - Reflected Cross Site Scripting (XSS) on the "file ondemand" rendering endpoint> date : 2023-10-13 09:00:00> lien : https://fortiguard.fortinet.com/psirt/FG-IR-23-273 An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiSandbox may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests. [...] | page 1 | page suivante | |
|
connected from address localhost (127.0.0.1:13484)
using claudebot
served for Ironie.org by Debian GNU/Linux