CVE-2025-22855

Published: 2025-04-08T14:15Z

Last Modified: 2025-04-08T18:13Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in Fortinet FortiClient before 7.4.1 may allow the EMS administrator to send messages containing javascript code. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt