Where
-Infinity
0

Trending

Last week
Last month
Last year

BleepingComputerFortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator

First published (updated )
News
BleepingComputer

Fortinet FortiSandbox PaaSIncorrect global authorization

Risk 84
Severity
9.1
First published (updated )
Advisory
FG-IR-26-136

Fortinet FortiSandbox PaaSIncorrect global authorization

Risk 90
Severity
9.8
First published (updated )
CVE-2026-26083

The RegisterPatch these critical Fortinet sandbox bugs that let attackers bypass login, run commands over HTTP

First published (updated )
News
The Register

Fortinet FortiSandboxCredential disclosure in LDAP configuration web page.

Risk 15
Severity
2.5
First published (updated )
Advisory
FG-IR-26-113
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fortinet FortiSandboxOS Command Injection through API endpoint

Risk 84
Severity
9.1
First published (updated )
Advisory
FG-IR-26-100

Fortinet FortiSandboxCredential disclosure in LDAP configuration web page.

Risk 16
Severity
2.7
First published (updated )
CVE-2026-27316

Fortinet FortiSandboxOS Command Injection through API endpoint

Risk 90
Severity
9.8
First published (updated )
CVE-2026-39808

Fortinet FortiSandboxUnauthenticated Authentication bypass and Privilege escalation in FortiSandbox

Risk 84
Severity
9.1
First published (updated )
Advisory
FG-IR-26-112

Fortinet FortiSandboxUnauthenticated Authentication bypass and Privilege escalation in FortiSandbox

Risk 90
Severity
9.8
First published (updated )
CVE-2026-39813
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fortinet FortiSandboxArbitrary directory delete on vmimages delete feature

Risk 56
Severity
6.2
First published (updated )
Advisory
FG-IR-26-115

Fortinet FortiSandboxMultiple Stored XSS

Risk 28
Severity
4.3
First published (updated )
Advisory
FG-IR-26-110

Fortinet FortiSandboxMultiple Stored XSS

Risk 29
Severity
4.8
First published (updated )
CVE-2026-39812

Fortinet FortiSandboxArbitrary directory delete on vmimages delete feature

Risk 57
Severity
6.7
First published (updated )
CVE-2026-25691

Fortinet FortiSandboxReflected XSS in Operation Center

Risk 32
Severity
4.9
First published (updated )
Advisory
FG-IR-26-109
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fortinet FortiSandboxReflected XSS in Operation Center

Risk 34
Severity
5.4
First published (updated )
CVE-2025-61886

Fortinet FortiSandboxXSS in LDAP server option

Risk 29
Severity
4.8
First published (updated )
CVE-2025-53608

Fortinet FortiSandboxXSS in LDAP server option

Risk 28
Severity
4.6
First published (updated )
Advisory
FG-IR-26-091

Fortinet FortiSandboxXSS via back button

Risk 74
Severity
7.9
First published (updated )
Advisory
FG-IR-25-093

Fortinet FortiSandboxXSS via back button

Risk 80
Severity
9.6
First published (updated )
CVE-2025-52436
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fortinet FortiSandboxZDI-26-048: Fortinet FortiSandbox fortisandbox Server-Side Request Forgery Remote Code Execution Vulnerability

Risk 43
First published (updated )
ZDI-CAN-27307

Fortinet FortiSandboxFortinet FortiSandbox fortisandbox Server-Side Request Forgery Remote Code Execution Vulnerability

Risk 43
First published (updated )
Advisory
ZDI-26-048

Fortinet FortiSandboxSSRF in GUI console

Risk 26
Severity
3.8
First published (updated )
CVE-2025-67685

Fortinet FortiSandboxSSRF in GUI console

Risk 25
Severity
3.4
First published (updated )
Advisory
FG-IR-25-783

Fortinet FortiSandboxFortinet FortiSandbox hcproxy Cross-Site Scripting Remote Code Execution Vulnerability

Risk 79
First published (updated )
Advisory
ZDI-25-1098
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Fortinet FortiSandboxFortinet FortiSandbox upload_vdi_file Command Injection Remote Code Execution Vulnerability

Risk 51
First published (updated )
Advisory
ZDI-25-1096

Fortinet FortiSandboxZDI-25-1098: Fortinet FortiSandbox hcproxy Cross-Site Scripting Remote Code Execution Vulnerability

Risk 79
First published (updated )
ZDI-CAN-27306

Fortinet FortiSandboxZDI-25-1096: Fortinet FortiSandbox upload_vdi_file Command Injection Remote Code Execution Vulnerability

Risk 51
First published (updated )
ZDI-CAN-27308

Fortinet FortiSandboxZDI-25-1095: Fortinet FortiSandbox names admindel_confirm Command Injection Remote Code Execution Vulnerability

Risk 51
First published (updated )
ZDI-CAN-27305

Fortinet FortiSandboxZDI-25-1097: Fortinet FortiSandbox name Parameter Command Injection Remote Code Execution Vulnerability

Risk 51
First published (updated )
ZDI-CAN-27309
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203