Lucene search
K

367 matches found

Zero Day Initiative
Zero Day Initiative
added 2023/03/14 12:0 a.m.214 views

PaperCut NG SetupCompleted Improper Access Control Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can...

9.8CVSS9.4AI score0.99999EPSS
Exploits24References1
Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.6 views

PT-2023-2482

The vulnerable software is PaperCut NG, specifically version 22.0.5 Build 63914. This version is affected by an improper access control flaw in the SetupCompleted class, which allows remote attackers to bypass authentication and execute arbitrary code in the context of SYSTEM. An exploit for this...

9.8CVSS7.7AI score0.99999EPSS
Exploits24References110
BDU FSTEC
BDU FSTEC
added 2021/09/28 12:0 a.m.5 views

The vulnerability of the Application Server component in network-based printing control systems like PaperCut MF and PaperCut NG allows attackers to execute arbitrary code and increase their privileges.

The vulnerability of the Application Server component in network-based printing control systems like PaperCut MF and PaperCut NG is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and increase their privileges...

10CVSS8.2AI score0.02488EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/08/13 12:0 a.m.6 views

The vulnerability of the printing control software in PaperCut MF and PaperCut NG, which exists due to the lack of measures to neutralize special elements, allows a violator to implement a script through the user interface.

The vulnerability of the printing control software in PaperCut MF and PaperCut NG exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor, operating remotely, to implement a malicious script through the user interface...

10CVSS7.8AI score0.03932EPSS
Exploits0References3Affected Software3
OSV
OSV
added 2019/06/06 5:29 p.m.2 views

CVE-2019-12135

An unspecified vulnerability in the application server in PaperCut MF and NG versions 18.3.8 and earlier and versions 19.0.3 and earlier allows remote attackers to execute arbitrary code via an unspecified vector...

9.8CVSS7.6AI score0.02488EPSS
Exploits0References2
NVD
NVD
added 2019/06/06 5:29 p.m.12 views

CVE-2019-12135

An unspecified vulnerability in the application server in PaperCut MF and NG versions 18.3.8 and earlier and versions 19.0.3 and earlier allows remote attackers to execute arbitrary code via an unspecified vector...

9.8CVSS9.7AI score0.02488EPSS
Exploits0References2
CVE
CVE
added 2019/06/06 4:7 p.m.172 views

CVE-2019-12135

CVE-2019-12135 concerns PaperCut MF and NG, affecting the application server in versions 18.3.8 and earlier and 19.0.3 and earlier. The vulnerability is unspecified in nature but enables remote attackers to execute arbitrary code via an unspecified vector. The available documents do not provide d...

9.8CVSS9.6AI score0.02488EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2019/06/06 4:7 p.m.17 views

CVE-2019-12135

An unspecified vulnerability in the application server in PaperCut MF and NG versions 18.3.8 and earlier and versions 19.0.3 and earlier allows remote attackers to execute arbitrary code via an unspecified vector...

9.8AI score0.02488EPSS
Exploits0References2
NVD
NVD
added 2019/02/20 4:29 a.m.12 views

CVE-2019-8948

PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6 allow script injection via the user interface, aka PC-15163...

9.8CVSS9.7AI score0.03932EPSS
Exploits0References2
Prion
Prion
added 2019/02/20 4:29 a.m.18 views

Code injection

PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6 allow script injection via the user interface, aka PC-15163...

7.5CVSS9.5AI score0.03932EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2019/02/20 4:29 a.m.3 views

CVE-2019-8948

PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6 allow script injection via the user interface, aka PC-15163...

9.8CVSS7.3AI score0.03932EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/02/20 4:0 a.m.14 views

CVE-2019-8948

PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6 allow script injection via the user interface, aka PC-15163...

9.7AI score0.03932EPSS
Exploits0References2
CVE
CVE
added 2019/02/20 4:0 a.m.48 views

CVE-2019-8948

CVE-2019-8948 affects PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6, where script injection is possible via the user interface (PC-15163). The CVSS v3 base score is 9.8 (CRITICAL) with network attack vector, no privileges required, and no user interaction. Remediation available in newer...

9.8CVSS9.5AI score0.03932EPSS
Exploits0References2Affected Software2
Openbugbounty
Openbugbounty
added 2018/04/14 2:8 p.m.58 views

papercut.com XSS vulnerability

Open Bug Bounty ID: OBB-601973 Description| Value ---|--- Affected Website:| papercut.com Open Bug Bounty Program:| View Open Bug Bounty Program Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
NVD
NVD
added 2014/04/28 2:9 p.m.14 views

CVE-2014-2657

Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 Build 26983 has unknown impact and remote vectors, related to embedded MFPs...

7.5CVSS6.6AI score0.01096EPSS
Exploits0References2
NVD
NVD
added 2014/04/28 2:9 p.m.16 views

CVE-2014-2658

Unspecified vulnerability in Papercut MF and NG before 14.1 Build 26983 allows attacker to cause a denial of service via unknown vectors...

5CVSS6.4AI score0.01344EPSS
Exploits0References4
Prion
Prion
added 2014/04/28 2:9 p.m.13 views

Design/Logic Flaw

Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 Build 26983 has unknown impact and remote vectors, related to embedded MFPs...

7.5CVSS7.2AI score0.01096EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2014/04/28 2:9 p.m.14 views

Code injection

Unspecified vulnerability in Papercut MF and NG before 14.1 Build 26983 allows attacker to cause a denial of service via unknown vectors...

5CVSS6.9AI score0.01344EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2014/04/28 2:0 p.m.63 views

CVE-2014-2658

CVE-2014-2658 affects PaperCut MF & NG prior to version 14.1 (Build 26983). The vulnerability allows an attacker to cause a denial-of-service condition via unknown vectors; impact is increased availability risk (DoS). Affected versions include PaperCut MF & NG 14.1 build 26830 and earlier. Remedi...

5CVSS6.6AI score0.01344EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2014/04/28 2:0 p.m.18 views

CVE-2014-2657

Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 Build 26983 has unknown impact and remote vectors, related to embedded MFPs...

6.6AI score0.01096EPSS
Exploits0References2
Rows per page
Query Builder