Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

PoC Exploit Tool Released for FortiWeb WAF Vulnerability Exploited in the Wild

Summary by IT Security News - Cybersecurity, Infosecurity News
A proof-of-concept (PoC) exploit tool for CVE-2025-64446 has been publicly released on GitHub. This vulnerability, affecting FortiWeb devices from Fortinet, involves a critical path traversal flaw that has already been observed in real-world attacks, allowing unauthorized access to sensitive CGI endpoints. Security researchers warn that the tool’s availability could accelerate exploitation attempts against unpatched systems […] The post PoC Expl…
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.Cross Cancel Icon

3 Articles

IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

PoC Exploit Tool Released for FortiWeb WAF Vulnerability Exploited in the Wild

A proof-of-concept (PoC) exploit tool for CVE-2025-64446 has been publicly released on GitHub. This vulnerability, affecting FortiWeb devices from Fortinet, involves a critical path traversal flaw that has already been observed in real-world attacks, allowing unauthorized access to sensitive CGI endpoints. Security researchers warn that the tool’s availability could accelerate exploitation attempts against unpatched systems […] The post PoC Expl…

Read Full Article
cybernoz.comcybernoz.com

U.S. CISA Adds Fortinet FortiWeb Flaw To Its Known Exploited Vulnerabilities Catalog - Cybernoz - Cybersecurity News

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 15, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Fortinet FortiWeb flaw, tracked as CVE-2025-64446  (CVSS score of 9.1), to its Known Exploited Vulner…

Read Full Article
unsafe.shunsafe.sh

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

unsafe.sh broke the news in on Saturday, November 15, 2025.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

CISA icon

CISA

United States icon

United States

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal