Fortinet FortiManager FortiOS 5.0.x >= 5.0.3 and < 5.0.11 Dataset Reports XSS
Medium Nessus Plugin ID 86471
SynopsisThe remote host is affected by a cross-site scripting vulnerability.
DescriptionThe Fortinet FortiManager FortiOS version running on the remote host is 5.x greater than or equal to 5.0.3 and prior to 5.0.11. It is, therefore, affected by a cross-site scripting vulnerability in the advanced dataset reports page due to a failure to properly sanitize user-supplied input to the 'sql-query' GET parameter before returning it to users. An unauthenticated, remote attacker can exploit this, via a crafted request, to execute arbitrary script code or HTML in the user's browser session. Note that this issue applies when the FortiAnalyzer feature is enabled.
SolutionUpgrade to Fortinet FortiOS version 5.0.11.