Cyber News

XSS via back button

10/02/2026

CVSSv3 Score: 7.9

An Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability [CWE-79] in FortiSandbox may allow an unauthenticated attacker to execute commands via crafted requests.FortiSandbox PaaS versions 4.4.8 and 5.0.5 contains the fix for this vulnerability.

Revised on 2026-02-10 00:00:00

– Read more

Monday	08:00 - 17:00
Tuesday	08:00 - 17:00
Wednesday	08:00 - 17:00
Thursday	08:00 - 17:00
Friday	08:00 - 17:00

XSS via back button

Latest article

2025 FINMA ISAE 3000 Type II attestation report available with 183 services in scope

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

2nd March – Threat Intelligence Report

EDITOR PICKS

2025 FINMA ISAE 3000 Type II attestation report available with 183...

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely

POPULAR POSTS

Threats to users of adult websites in 2018

The World’s Most Popular Coding Language Happens to be Most Hackers’...

IT threat evolution Q2 2019

POPULAR CATEGORY

2025 FINMA ISAE 3000 Type II attestation report available with 183...

Vulnerability monitoring service secures public-sector websites faster

Chrome Gemini Vulnerability Lets Attackers Access Victims’ Camera and Microphone Remotely