CVE-2021-43062

MEDIUM NUCLEI

FortiMail 6.2.0-6.2.7, 6.4.0-6.4.5, 6.3.0-6.3.7, 7.0.0-7.0.1 - XSS via FortiGuard URI Protection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-43062. PoCs published by Braiant Giraldo Villa. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates a reflected XSS vulnerability in FortiMail versions 7.0.1 and below, 6.4.5 and below, and 6.2.7 and below. The vulnerability allows an unauthenticated attacker to execute arbitrary JavaScript via a crafted HTTP GET request to the FortiGuard URI protection service.

Description

A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiMail version 7.0.1 and 7.0.0, version 6.4.5 and below, version 6.3.7 and below, version 6.0.11 and below allows attacker to execute unauthorized code or commands via crafted HTTP GET requests to the FortiGuard URI protection service.

Exploits (1)

exploitdb WORKING POC

by Braiant Giraldo Villa · textwebappsmultiple

https://www.exploit-db.com/exploits/50759

View Code ZIP pw:eip

This exploit demonstrates a reflected XSS vulnerability in FortiMail versions 7.0.1 and below, 6.4.5 and below, and 6.2.7 and below. The vulnerability allows an unauthenticated attacker to execute arbitrary JavaScript via a crafted HTTP GET request to the FortiGuard URI protection service.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: FortiMail versions 7.0.1 and below, 6.4.5 and below, 6.2.7 and below

No auth needed

Prerequisites: Access to the target FortiMail instance

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

Fortinet FortiMail 7.0.1 - Cross-Site Scripting

MEDIUMby ajaysenr

Shodan: http.title:"fortimail"

FOFA: title="fortimail" || fortimail && port=443

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

https://fortiguard.com/advisory/FG-IR-21-185

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/166055/Fortinet-Fortimail-7.0.1-Cross-Site-Scripting.html

Scores

CVSS v3 6.1

EPSS 0.1294

EPSS Percentile 95.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (1)

fortinet/fortimail 6.2.0 - 6.2.8

Published Feb 02, 2022

Tracked Since Feb 18, 2026