FortiGuard Fortinet - Security Bulletins: http://fortiguard.com/advisory/forticloud-cross-site-script-persistent-web-vulnerabilities http://fortiguard.com/advisory/fortivoice-5-0-filter-bypass-persistent-web-vulnerabilities http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability-1 http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-xss-vulnerability http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-client-side-xss-vulnerability http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability CVE-IDs: CVE-2016-3196 ; CVE-2016-3195 ; CVE-2016-3194 & CVE-2016-3193 Vulnerability Lab - Security Advisories: http://www.vulnerability-lab.com/get_content.php?id=1687 http://www.vulnerability-lab.com/get_content.php?id=1684 http://www.vulnerability-lab.com/get_content.php?id=1686 http://www.vulnerability-lab.com/get_content.php?id=1685 http://www.vulnerability-lab.com/get_content.php?id=1735 http://www.vulnerability-lab.com/get_content.php?id=1842 Reference Article: http://www.securityweek.com/vulnerabilities-found-several-fortinet-products http://magazine.vulnerability-db.com/?q=articles/2016/08/08/fortinet-patches-series-remote-vulnerabilities-appliance-products Comments: Thanks to the fortinet psirt security department in the usa for coordinating the disclosure process!