Client IP relies on X-Forwarded-For and other headers

Fortiguard Security Advisory

A Use Of Less Trusted Source [CWE-348] vulnerability in FortiPortal may allow an unauthenticated attack to bypass IP protection through crafted HTTP or HTTPS packets.


Leave a Reply

Your email address will not be published. Required fields are marked *