Vulnerability CVE-2023-41836
Published: 2023-10-13

Description:
An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.0 and 4.2.0 through 4.2.4, and 4.0.0 through 4.0.4 and 3.2.0 through 3.2.4 and 3.1.0 through 3.1.5 and 3.0.4 through 3.0.7 allows attacker to execute unauthorized code or commands via crafted HTTP requests.

 References:
https://fortiguard.com/psirt/FG-IR-23-215
Copyright 2026, cxsecurity.com

 

Back to Top