cbcvebase.
CVE-2015-1880
published 2015-05-12

CVE-2015-1880: Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script…

PriorityP428medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
14.26%
96.1th percentile
Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected

3 ranges
VendorProductVersion rangeFixed in
fortinetfortios
fortinetfortios
fortinetfortios

Detection & IOCsextracted from sources · hover to see the quote

otheralert('{{randstr}}')
  • Probe for XSS on the FortiOS sslvpn login page; a successful response returns HTTP 200 with Content-Type text/html containing the injected payload.
  • ·Vulnerability affects FortiOS 5.2.x before 5.2.3 only; versions 5.2.3 and later are not affected.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.