CVE-2016-4066 (fortiweb)

CVE-2016-4066 (fortiweb)

Cross-site request forgery (CSRF) vulnerability in Fortinet FortiWeb before 5.5.3 allows remote attackers to hijack the authentication of administrators for requests that change the password via unspecified vectors.

Source: CVE-2016-4066 (fortiweb)