CVE-2017-3131

MEDIUM NUCLEI

FortiOS 5.4.0-5.4.4 and 5.6.0 - Cross-Site Scripting via FortiView Applications Filter Input

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-3131. PoCs published by patryk_bogdan. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates multiple XSS vulnerabilities in FortiOS <= 5.6.0, including reflected and stored XSS in various web UI components. The PoC includes HTTP requests and responses showing successful exploitation.

Description

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauthorized code or commands via the filter input in "Applications" under FortiView.

Exploits (1)

exploitdb WORKING POC VERIFIED
by patryk_bogdan · textwebappshardware
https://www.exploit-db.com/exploits/42388

This exploit demonstrates multiple XSS vulnerabilities in FortiOS <= 5.6.0, including reflected and stored XSS in various web UI components. The PoC includes HTTP requests and responses showing successful exploitation.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: FortiOS versions up to 5.6.0
Auth required
Prerequisites: Access to the FortiOS web interface · Valid session cookies for authenticated XSS
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

FortiOS 5.4.0 to 5.6.0 - Cross-Site Scripting
MEDIUMby ritikchaddha
Shodan: http.html:"/remote/login" "xxxxxxxx" || http.favicon.hash:945408572 || cpe:"cpe:2.3:o:fortinet:fortios"

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100009
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039020
Mitigation, Vendor Advisory x_refsource_confirm
https://fortiguard.com/advisory/FG-IR-17-104
Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42388/

Scores

CVSS v3 5.4
EPSS 0.0768
EPSS Percentile 93.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (7)
fortinet/fortios 5.4.0
fortinet/fortios 5.4.1
fortinet/fortios 5.4.2
fortinet/fortios 5.4.3
fortinet/fortios 5.4.4
fortinet/fortios 5.6.0
Fortinet, Inc./Fortinet FortiOS FortiOS versions 5.4.0 through 5.4.4 and 5.6.0
Published Sep 12, 2017
Tracked Since Feb 18, 2026