296,746
Total vulnerabilities in the database
An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiWeb version 7.6.0 through 7.6.3, 7.4.0 through 7.4.7, 7.2.0 through 7.2.10 and before 7.0.10 allows an authenticated privileged attacker to execute unauthorized code or commands via crafted CLI commands
| Software | From | Fixed in |
|---|---|---|
| fortinet / fortiweb | 7.0.0 | 7.0.11 |
| fortinet / fortiweb | 7.2.0 | 7.2.11 |
| fortinet / fortiweb | 7.4.0 | 7.4.8 |
| fortinet / fortiweb | 7.6.0 | 7.6.4 |