← Home
User controlled SQL commands
Source: fortinet / FG-IR-26-134
— original advisory
Published: 2026-05-12
· Last updated: 2026-05-12
· Vendor severity: Not rated by vendor
CVEs
| CVE | CVSS | CWE | Exploitation |
| CVE-2026-25088 |
5.1 |
CWE-89: SQL Injection |
Not observed in the wild |
Affected Products
| Product | Affected versions | Fixed version |
| FortiNDR |
FortiNDR 7.0 |
Not specified by vendor |
| FortiNDR |
FortiNDR 7.1 |
Not specified by vendor |
| FortiNDR |
FortiNDR 7.2 |
Not specified by vendor |
| FortiNDR |
FortiNDR 7.4 |
Not specified by vendor |
| FortiNDR |
FortiNDR 7.6 |
Not specified by vendor |