CVE-2013-6826

Currently unrated

Key Information:

Vendor: Fortinet
Status: Fortianalyzer Firmware; Fortianalyzer-1000d; Fortianalyzer-2000b; Fortianalyzer-200d
Vendor: CVE Published:; 20 November 2013

Summary

cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet FortiAnalyzer before 5.0.5 does not properly validate the csrf_token parameter, which allows remote attackers to perform cross-site request forgery (CSRF) attacks.

References

http://packetstormsecurity.com/files/123980/fortianalyzer...

x_refsource_MISC

http://www.securityfocus.com/bid/63663

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 20, 2013