Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now
Lawrence Abrams
July 11, 2025
03:41 PM
0
Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to achieve pre-authenticated remote code execution on vulnerable servers.
FortiWeb is a web application firewall (WAF), which is used to protect web applications from malicious HTTP traffic and threats.
The FortiWeb vulnerability has a 9.8/10 severity score and is tracked ...
