Fortiweb – TheCyberThrone

Critical Fortinet FortiWeb Vulnerability CVE-2025-64446

On November 14, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) officially added CVE-2025-64446 to its Known Exploited Vulnerabilities (KEV) catalog. This critical vulnerability affects Fortinet FortiWeb web application firewall…

PravinKarthik November 15, 2025

Fortinet Patches Critical Vulnerabilities in FortiNAC and FortiWeb

Fortinet has patched two critical bugs in its FortiNAC and FortiWeb products that if exploited could allow an unauthenticated attacker to execute unauthorized code or commands via a specifically crafted…

PravinKarthik February 18, 2023

FortiWeb WAF Flaw

Fortinet has recently found a high-severity vulnerability (CVE-2021-22123) affecting its FortiWeb WAF, a remote, authenticated attacker can exploit it to execute arbitrary commands via the SAML server configuration page. An…

PravinKarthik June 25, 2021

FortiNet Vulnerability

Fortinet has addressed four vulnerabilities in FortiWeb web application firewalls The first vulnerability, tracked as CVE-2020-29015, is a blind SQL injection that resides in the FortiWeb user interface. The flaw could be exploited…

PravinKarthik February 5, 2021

FortiNet WAF Vulnerability

Researchers found multiple serious vulnerabilities in Fortinet’s FortiWeb web application firewall (WAF) that could be exploited by attackers to hack into corporate networks. The flaws, tracked as CVE-2020-29015, CVE-2020-29016, CVE-2020-29018,…

PravinKarthik January 7, 2021