With two proof-of-concept (PoC) exploits made public late last week, CVE-2025-25257 – a critical SQL command injection vulnerability in Fortinet’s FortiWeb web application firewall – is expected to be leveraged by attackers soon. About CVE-2025-25257 CVE-2025-25257 is found in FortiWeb’s Fabric Connector, the software that allows FortiWeb to communicate with other Fortinet security products (e.g., FortiGate firewalls, FortiSandbox, etc.). The flaw stems from the solution’s failure to properly neutralize special elements and, if triggered, it … More

The post Exploits for unauthenticated FortiWeb RCE are public, so patch quickly! (CVE-2025-25257) appeared first on Help Net Security.