{"id":67941,"date":"2025-08-12T23:32:37","date_gmt":"2025-08-12T20:02:37","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-32932-fortisoar-xss\/"},"modified":"2025-08-12T23:32:37","modified_gmt":"2025-08-12T20:02:37","slug":"cve-2025-32932-fortisoar-xss","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-32932-fortisoar-xss\/","title":{"rendered":"CVE-2025-32932 &#8211; FortiSOAR XSS"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-32932<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 12, 2025, 7:15 p.m. | 30\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>An Improper neutralization of input during web page generation (&#8216;cross-site scripting&#8217;) vulnerability [CWE-79] in FortiSOAR version 7.6.1 and below, version 7.5.1 and below, 7.4 all versions, 7.3 all versions, 7.2 all versions, 7.0 all versions, 6.4 all versions WEB UI may allow an authenticated remote attacker to perform an XSS attack via stored malicious service requests<br \/>\n<br \/>\n<strong>Severity:<\/strong> 6.5 | MEDIUM<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-32932 Published : Aug. 12, 2025, 7:15 p.m. | 30\u00a0minutes ago Description : An Improper neutralization of input during web page generation (&#8216;cross-site scripting&#8217;) vulnerability [CWE-79] in FortiSOAR version 7.6.1 and below, version 7.5.1 and below, 7.4 all versions, 7.3 all versions, 7.2 all versions, 7.0 all versions, 6.4 all versions WEB &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-67941","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67941","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=67941"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/67941\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=67941"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=67941"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=67941"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}