← All CVEs
CVE-2015-1880MEDIUM · 4.3Long-tail
CVE-2015-1880
Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Disclosed
2015-05-12
4046 days ago
Still scanned
11 years later
ongoing background-scan activity
7-day events
0
across 0 distinct IPs
7-day spread
0 ASN · 0 cty
0 active days
In-the-wild assessment
Some activity observed but below the in-the-wild threshold. Last 7 days: 0/5 IPs, 0/3 ASNs, 0/3 countries, 0/2 active days. Likely a researcher PoC or single campaign rather than wide exploitation.
Daily events · last 365 days
2025-06-11peak 10 · total 282026-06-10
Top ASNs
No events captured yet.
Top countries
No events captured yet.
References
- http://www.fortiguard.com/advisory/FG-IR-15-005/
- http://www.securityfocus.com/bid/74652
- http://www.securitytracker.com/id/1032261
- http://www.securitytracker.com/id/1032262
- http://www.securitytracker.com/id/1032264
- http://www.securitytracker.com/id/1032265
- http://www.fortiguard.com/advisory/FG-IR-15-005/
- http://www.securityfocus.com/bid/74652
- http://www.securitytracker.com/id/1032261
- http://www.securitytracker.com/id/1032262
- http://www.securitytracker.com/id/1032264
- http://www.securitytracker.com/id/1032265