{"uuid": "5009fa83-d1f1-48c9-986d-cfc73ebbc67d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-52970", "type": "published-proof-of-concept", "source": "https://t.me/cKure/15244", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 A critical security vulnerability in Fortinet\u2019s FortiWeb web application firewall has been discovered that allows unauthenticated attackers to bypass authentication and impersonate any existing user on affected devices.\n\nThe flaw, tracked as CVE-2025-52970 and dubbed \u201cFort-Majeure\u201d by its discoverer, stems from improper parameter handling in the application\u2019s cookie parsing mechanism.\n\nhttps://gbhackers.com/fortiweb-authentication-bypass-vulnerability/", "creation_timestamp": "2025-08-17T07:23:43.000000Z"}