Cross-site scripting (XSS) vulnerability exists in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 It allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Sanitize user input
Update to the latest version