{"vulnerability": "CVE-2021-36175", "sightings": [{"uuid": "da885f89-923f-4e4e-9fd0-90f1c494b18c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36175", "type": "seen", "source": "https://t.me/cibsecurity/30033", "content": "\u203c CVE-2021-36175 \u203c\n\nAn improper neutralization of input vulnerability [CWE-79] in FortiWebManager versions 6.2.3 and below, 6.0.2 and below may allow a remote authenticated attacker to inject malicious script/tags via the name/description/comments parameter of various sections of the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-06T14:37:55.000000Z"}]}