cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2015-3617,https://securityvulnerability.io/vulnerability/CVE-2015-3617,,Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands.,Fortinet,Fortimanager Firmware,7.8,HIGH,0.0004199999966658652,false,false,false,false,,false,false,2017-08-22T15:00:00.000Z,0
CVE-2015-3614,https://securityvulnerability.io/vulnerability/CVE-2015-3614,,"Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability.",Fortinet,Fortimanager Firmware,7.5,HIGH,0.0020200000144541264,false,false,false,false,,false,false,2017-08-11T21:00:00.000Z,0
CVE-2015-3615,https://securityvulnerability.io/vulnerability/CVE-2015-3615,,"Cross-site scripting (XSS) vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving unspecified parameters and a privilege escalation attack.",Fortinet,Fortimanager Firmware,5.4,MEDIUM,0.0008099999977275729,false,false,false,false,,false,false,2017-08-11T21:00:00.000Z,0
CVE-2015-3616,https://securityvulnerability.io/vulnerability/CVE-2015-3616,,"SQL injection vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to execute arbitrary commands via unspecified parameters.",Fortinet,Fortimanager Firmware,9.8,CRITICAL,0.002300000051036477,false,false,false,false,,false,false,2017-08-11T21:00:00.000Z,0
CVE-2015-7363,https://securityvulnerability.io/vulnerability/CVE-2015-7363,,"Cross-site scripting (XSS) vulnerability in the advanced settings page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.3, in hardware models with a hard disk, and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.3 allows remote administrators to inject arbitrary web script or HTML via vectors related to report filters.",Fortinet,Fortimanager Firmware,5.4,MEDIUM,0.0009800000116229057,false,false,false,false,,false,false,2016-10-07T14:00:00.000Z,0
CVE-2016-3195,https://securityvulnerability.io/vulnerability/CVE-2016-3195,,Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Fortinet,Fortimanager Firmware,6.1,MEDIUM,0.001820000004954636,false,false,false,false,,false,false,2016-08-19T21:00:00.000Z,0
CVE-2016-3194,https://securityvulnerability.io/vulnerability/CVE-2016-3194,,Cross-site scripting (XSS) vulnerability in the address added page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Fortinet,Fortimanager Firmware,6.1,MEDIUM,0.001820000004954636,false,false,false,false,,false,false,2016-08-19T21:00:00.000Z,0
CVE-2016-3193,https://securityvulnerability.io/vulnerability/CVE-2016-3193,,"Cross-site scripting (XSS) vulnerability in the appliance web-application in Fortinet FortiManager 5.x before 5.0.12, 5.2.x before 5.2.6, and 5.4.x before 5.4.1 and FortiAnalyzer 5.x before 5.0.13, 5.2.x before 5.2.6, and 5.4.x before 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.",Fortinet,Fortimanager Firmware,5.4,MEDIUM,0.0008800000068731606,false,false,false,false,,false,false,2016-08-19T21:00:00.000Z,0
CVE-2016-3196,https://securityvulnerability.io/vulnerability/CVE-2016-3196,,Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an image uploaded in the report section.,Fortinet,Fortimanager Firmware,5.4,MEDIUM,0.002259999979287386,false,false,false,false,,false,false,2016-08-05T14:00:00.000Z,0
CVE-2015-8037,https://securityvulnerability.io/vulnerability/CVE-2015-8037,,Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) SOMVpnSSLPortalDialog or (2) FGDMngUpdHistory.,Fortinet,Fortimanager Firmware,,,0.0014199999859556556,false,false,false,false,,false,false,2015-11-02T19:59:00.000Z,0
CVE-2015-8038,https://securityvulnerability.io/vulnerability/CVE-2015-8038,,Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) sharedjobmanager or (2) SOMServiceObjDialog.,Fortinet,Fortimanager Firmware,,,0.0014199999859556556,false,false,false,false,,false,false,2015-11-02T19:59:00.000Z,0
CVE-2015-3620,https://securityvulnerability.io/vulnerability/CVE-2015-3620,,Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Fortinet,Fortimanager Firmware,,,0.01576000079512596,false,false,false,false,,false,false,2015-05-12T19:00:00.000Z,0
CVE-2014-2336,https://securityvulnerability.io/vulnerability/CVE-2014-2336,,"Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 and FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2334 and CVE-2014-2335.",Fortinet,"Fortimanager,Fortianalyzer Firmware",,,0.002199999988079071,false,false,false,false,,false,false,2014-10-31T14:00:00.000Z,0