Exploit for Improper Handling of Parameters in Fortinet Fortiweb_4AF57A84-FBF5-57A9-922F-6EA64B88DB59 -...

8.1 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

🚨 FortiWeb Authentication Bypass → Remote Code Execution 📌 Overview This repository demonstrates an authentication bypass in FortiWeb that can be chained to achieve Remote Code Execution (RCE). The exploit leverages a vulnerable endpoint...

Visit Original Source

Basic Information

ID 4AF57A84-FBF5-57A9-922F-6EA64B88DB59

Published Aug 23, 2025 at 07:09

Modified Aug 23, 2025 at 16:09

{
    "lastseen": "2025-08-24T03:00:14",
    "description": "\ud83d\udea8 FortiWeb Authentication Bypass \u2192 Remote Code Execution \ud83d\udccc Overview This repository demonstrates an authentication bypass in FortiWeb that can be chained to achieve Remote Code Execution (RCE). The exploit leverages a vulnerable endpoint...",
    "published": "2025-08-23T07:09:10",
    "modified": "2025-08-23T16:09:31",
    "type": "githubexploit",
    "title": "Exploit for Improper Handling of Parameters in Fortinet Fortiweb",
    "source": "",
    "references": "",
    "id": "4AF57A84-FBF5-57A9-922F-6EA64B88DB59",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2025-52970"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/Hex00-0x4/FortiWeb-CVE-2025-52970-Authentication-Bypass",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply