Vulnerability

Critical FortiWeb SQL Injection (CVE-2025-25257) Allows Remote Code Execution, PoC Published

Fortinet has released critical security updates for FortiWeb, addressing a severe vulnerability that allowed unauthenticated attackers to execute arbitrary SQL queries remotely. The flaw, tracked as CVE-2025-25257, received a CVSS score of 9.6, placing...