PT-2023-32045 · Sato · Sato Cl4Nx-J Plus

Name of the Vulnerable Software and Affected Versions: SATO CL4NX-J Plus version 1.13.2-u455 r2 Description: A critical issue affects an unknown functionality of the WebConfig component, leading to improper authentication. The attack must be carried out within the local network. The exploit has...

MAN-EAM-0003 3.2.4 XML Injection

Exploit Title: MAN-EAM-0003 V3.2.4 - XXE Date: 2022-09-19 Exploit Author: Ahmed Alroky Author: http://guralp.com/ Version: 3.2.4 Authentication Required: NO CVE : CVE-2022-38840 Google dork: " webconfig menu.cgi " Tested on: Windows Exploit 1 - browse to http:// name/cgi-bin/xmlstatus.cgi 2 - cli...

CVE-2022-36133

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass...

Authentication flaw

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass...

PT-2022-23217 · Epson · Epson Tm-C7500 +1

Name of the Vulnerable Software and Affected Versions: Epson TM-C3500 version WAM31500 Epson TM-C7500 version WAM31500 Description: The WebConfig functionality of the devices allows authentication bypass. Recommendations: For Epson TM-C3500 version WAM31500, consider disabling the WebConfig...

CVE-2022-36133

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass...

CVE-2022-36133

The WebConfig functionality of Epson TM-C3500 and TM-C7500 devices with firmware version WAM31500 allows authentication bypass...

CVE-2022-36133

CVE-2022-36133 affects Epson TM-C3500 and TM-C7500 printers running firmware WAM31500, where the WebConfig functionality allows an authentication bypass. Multiple connected documents confirm the vulnerable component (WebConfig) and the affected firmware version, indicating a network-accessible fl...

Exploit for Improper Restriction of XML External Entity Reference in Rocketsoftware Ags-Zena

Zena Housekeeping notes: The original CookieMonster Repo can b...

Exploit for Cross-site Scripting in Rocketsoftware Ags-Zena

Zena - Stored XSS to RCE Exploit POC Exploit POC for Rocket...

CVE-2019-12148

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field. Upon successful exploitation, a remote unauthenticated user can login into the device's admin...

CVE-2017-6443

Cross-site scripting XSS vulnerability in EPSON TMNet WebConfig 1.00 allows remote attackers to inject arbitrary web script or HTML via the WAD1 parameter to Forms/oadmin1...

CVE-2017-6443

Cross-site scripting XSS vulnerability in EPSON TMNet WebConfig 1.00 allows remote attackers to inject arbitrary web script or HTML via the WAD1 parameter to Forms/oadmin1...

Cross site scripting

Cross-site scripting XSS vulnerability in EPSON TMNet WebConfig 1.00 allows remote attackers to inject arbitrary web script or HTML via the WAD1 parameter to Forms/oadmin1...

CVE-2017-6443

Cross-site scripting XSS vulnerability in EPSON TMNet WebConfig 1.00 allows remote attackers to inject arbitrary web script or HTML via the WAD1 parameter to Forms/oadmin1...

CVE-2017-6443

CVE-2017-6443 is a documented Cross-site scripting (XSS) vulnerability in Epson TMNet WebConfig 1.00. The flaw allows remote attackers to inject arbitrary JavaScript/HTML via the W_AD1 parameter to Forms/oadmin_1. Public sources describe a persistent XSS behavior with a POST to /Forms/oadmin_1, a...

EPSON TMNet WebConfig 1.00 Cross Site Scripting

Summary: Persistent cross-site scripting XSS in the web interface of Epson's TMNet WebConfig Ver 1.00 application allows a remote attacker to introduce arbitary Javascript via manipulation of an unsanitized POST parameter. ------------------------------------------------------------------------...

EPSON TMNet WebConfig 1.00 - Cross-Site Scripting Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Persistent XSS in EPSON TMNet WebConfig Ver. 1.00 Google Dork: intitle:"EPSON TMNet WebConfig Ver.1.00" Date: 3/3/2017 Exploit Author: Michael Benich Vendor Homepage: https://www.epson-biz.com/ Software Link:...

EPSON TMNet WebConfig 1.00 - Cross-Site Scripting

EPSON TMNet WebConfig 1.00 - Cross-Site Scripting Exploit Title: Persistent XSS in EPSON TMNet WebConfig Ver. 1.00 Google Dork: intitle:"EPSON TMNet WebConfig Ver.1.00" Date: 3/3/2017 Exploit Author: Michael Benich Vendor Homepage: https://www.epson-biz.com/ Software Link:...

Cross site scripting

Cross-site scripting XSS vulnerability in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI modem allows remote attackers to inject arbitrary web script or HTML via the essid parameter...