https://blog.qife122.com/tags/web%E4%BB%A3%E7%90%86/ Recent content in Web代理 on 办公AI智能小助手 Hugo zh-cn qife Wed, 22 Oct 2025 16:54:47 +0800 https://blog.qife122.com/p/fortinet%E5%AE%89%E5%85%A8%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90%E6%98%BE%E5%BC%8Fweb%E4%BB%A3%E7%90%86%E4%B8%AD%E7%9A%84%E5%9F%9F%E5%90%8D%E5%89%8D%E7%AB%AF%E4%BF%9D%E6%8A%A4%E7%BB%95%E8%BF%87/ Wed, 22 Oct 2025 16:54:47 +0800 https://blog.qife122.com/p/fortinet%E5%AE%89%E5%85%A8%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90%E6%98%BE%E5%BC%8Fweb%E4%BB%A3%E7%90%86%E4%B8%AD%E7%9A%84%E5%9F%9F%E5%90%8D%E5%89%8D%E7%AB%AF%E4%BF%9D%E6%8A%A4%E7%BB%95%E8%BF%87/ <h2 id="摘要">摘要</h2> <p>FortiOS和FortiProxy显式Web代理中存在标准安全检查实现不当漏洞[CWE-358]，可能允许经过身份验证的代理用户通过精心构造的HTTP请求绕过域名前端保护功能。</p>