Site icon API Security Blog

FortiWeb – Path traversal in API controller

A relative path traversal vulnerability [CWE-23] in the API of FortiWeb may allow an authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.Read More

Exit mobile version