News

Fortinet fixes a critical SQL injection vulnerability in FortiWeb (CVE-2025-25257), posing risks to database security.
Proof-of-concept exploits have been released for a critical SQLi vulnerability in Fortinet FortiWeb that can be used to achieve pre-authenticated remote code execution on vulnerable servers.
On Thursday, Fortinet released an update for FortiWeb. Exploits have emerged that abuse the critical gap.
Ivanti, Fortinet, and Splunk have released patches for critical- and high-severity vulnerabilities in their products.
Microsoft this month pushed out 133 patches for a broad swatch of software and apps and plugged a zero-day flaw in SQL Server ...