Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: fortiweb Clear
ID Title
CVE-2026-24858 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2026-24858)
vulnerability in Fortinet multiple-products (CVE-2026-24858). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-59719 Vulnerability in fortinet (CVE-2025-59719)
vulnerability in fortinet (CVE-2025-59719). Successful exploitation can lead to full system takeover.
CVE-2025-58034 KEV [KEV] OS Command Injection in Fortinet fortiweb (CVE-2025-58034)
OS command injection in Fortinet fortiweb (CVE-2025-58034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-64446 KEV [KEV] Vulnerability in Fortinet fortiweb (CVE-2025-64446)
vulnerability in Fortinet fortiweb (CVE-2025-64446). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-25257 KEV [KEV] SQL Injection in Fortinet fortiweb (CVE-2025-25257)
SQL injection in Fortinet fortiweb (CVE-2025-25257). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-48885 Path Traversal in path-traversal (CVE-2024-48885)
path traversal in path-traversal (CVE-2024-48885). Risk of unauthorized operations or information disclosure.
CVE-2024-48884 Path Traversal in path-traversal (CVE-2024-48884)
path traversal in path-traversal (CVE-2024-48884). Risk of unauthorized operations or information disclosure.
CVE-2017-7736 Cross-Site Scripting (XSS) in fortinet (CVE-2017-7736)
cross-site scripting in fortinet (CVE-2017-7736). Risk of unauthorized operations or information disclosure.
CVE-2017-7737 Information Disclosure in fortinet (CVE-2017-7737)
vulnerability in fortinet (CVE-2017-7737). Confidential information can be exposed externally.
CVE-2017-3129 Cross-Site Scripting (XSS) in fortinet (CVE-2017-3129)
cross-site scripting in fortinet (CVE-2017-3129). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →