CVE-2020-29015 – A blind SQL injection in the user interface of FortiWeb 6.3.0 through 6.3.7 and version be …

14 January 2021

Vuln ID: CVE-2020-29015

Published: 2021-01-14 16:15:17Z

Description: A blind SQL injection in the user interface of FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to execute arbitrary SQL queries or commands by sending a request with a crafted Authorization header containing a malicious SQL statement.

Source: NVD.NIST.GOV

Date:

14 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Analyze Malicious Powershell Scripts by Running Malware in ANY.RUN Sandbox25 April 2024
Apple reportedly cuts Vision Pro production due to low demand25 April 2024
Action needed amid escalating ransomware attacks, record-high payments25 April 2024
Ransomware triggers cyberinsurance claims increase25 April 2024
SSH Backdoor from Compromised XZ Utils Library25 April 2024