CVE-2016-3978

MEDIUM NUCLEI

FortiOS <5.0.13-5.2.3-5.4.0 - CSRF

Title source: llm

Description

The Web User Interface (WebUI) in FortiOS 5.0.x before 5.0.13, 5.2.x before 5.2.3, and 5.4.x before 5.4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via the "redirect" parameter to "login."

Nuclei Templates (1)

Fortinet FortiOS - Open Redirect/Cross-Site Scripting

MEDIUMby 0x_Akoko

Shodan:

http.html:"/remote/login" "xxxxxxxx" || http.favicon.hash:945408572 || cpe:"cpe:2.3:o:fortinet:fortios" || port:10443 http.favicon.hash:945408572

FOFA: body="/remote/login" "xxxxxxxx" || icon_hash=945408572

References (3)

[Vendor Advisory] http://www.fortiguard.com/advisory/fortios-open-redirect-vulnerability

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1035332

[Mailing List] http://seclists.org/fulldisclosure/2016/Mar/68

Scores

CVSS v3 6.1

EPSS 0.0555

EPSS Percentile 90.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Classification

CWE

CWE-79

Status draft

Affected Products (17)

fortinet/fortios

... and 2 more

Timeline

Published Apr 08, 2016

Tracked Since Feb 18, 2026