Vulnerability CVE-2023-36637


Published: 2023-10-10

Description:
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiMail version 7.2.0 through 7.2.2 and before 7.0.5 allows an authenticated attacker to inject HTML tags in FortiMail's calendar via input fields.

 References:
https://fortiguard.com/psirt/FG-IR-23-194

Copyright 2026, cxsecurity.com

 

Back to Top