CVE-2012-6346

Published: 2018-02-09T22:29Z

Last Modified: 2024-11-21T01:46Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Multiple cross-site scripting (XSS) vulnerabilities in FortiWeb before 4.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) redir or (2) mkey parameter to waf/pcre_expression/validate. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt