Fortinet FortiWeb cgi_httpcontentrouting_post Directory Traversal Remote Code Execution Vulnerability (CVE-2025-25254)

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fortinet FortiWeb.

Authentication is required to exploit this vulnerability.

The specific flaw exists within the cgi_httpcontentrouting_post function.

The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations.

An attacker can leverage this vulnerability to execute code in the context of root.

I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.