CVE-2022-30304

Vulnerability Description

An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiAnalyzer versions prior to 7.2.1, 7.0.4 and 6.4.8 may allow a remote unauthenticated attacker to perform a stored cross site scripting (XSS) attack via the URL parameter observed in the FortiWeb attack event logview in FortiAnalyzer.

Vulnerability Details

Published Date

February 16, 2023

Last Modified

November 21, 2024

Source

NVD

CVE-2022-30304

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment