CVE-2023-36637

Published: 2023-10-10T17:15Z

Last Modified: 2024-11-21T08:10Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiMail version 7.2.0 through 7.2.2 and before 7.0.5 allows an authenticated attacker to inject HTML tags in FortiMail's calendar via input fields. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt