11 matches found
RICOH MP C2003 Cross-site Scripting (CVE-2018-17315)
On the RICOH MP C2003 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...
RICOH Web Image Monitor 1.09 - HTML Injection
RICOH Web Image Monitor 1.09 - HTML Injection Exploit Title: RICOH Web Image Monitor 1.09 - HTML Injection Date: 2019-05-06 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link: http://support-download.com/services/device/webhlp/nb/gen/v140cc1/en/ptop010.html...
RICOH SP 4510SF Printer - HTML Injection
RICOH SP 4510SF Printer - HTML Injection Exploit Title: RICOH SP 4510SF Printer - HTML Injection Date: 2019-05-06 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link: http://support.ricoh.com/bb/html/drute/re1/model/sp4510/sp4510.htm Software: RICOH Printer Produ...
RICOH SP 4510SF Printer HTML Injection
Exploit Title: RICOH SP 4510SF Printer - HTML Injection Date: 2019-05-06 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link: http://support.ricoh.com/bb/html/drute/re1/model/sp4510/sp4510.htm Software: RICOH Printer Product Version: SP 4510SF Vulernability Type:...
RICOH SP 4510SF Cross-Site Scripting Vulnerability
The RICOH SP 4510SF is a multifunction printer device from Ricoh Japan. A cross-site scripting vulnerability exists in the address addition area of the RICOH SP 4510SF, which arises from the program failing to properly validate user-submitted input. An attacker can exploit this vulnerability by...
RICOH MP C6503 Plus Cross-Site Scripting Vulnerability
The RICOH MP C6503 Plus is a multifunction printer device from Ricoh Japan. A cross-site scripting vulnerability exists in the address add area in the RICOH MP C6503 Plus. A remote attacker can exploit this vulnerability by sending the 'entryNameIn' parameter to the...
CVE-2018-17315
On the RICOH MP C2003 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
CVE-2018-17313
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
Cross site scripting
On the RICOH MP C6503 Plus printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
Cross site scripting
On the RICOH MP C6003 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
CVE-2018-17309
The CVE-2018-17309 entry concerns the Ricoh MP C406Z multifunction printer. Affected component: the address management web interface, specifically the /web/entry/en/address/adrsSetUserWizard.cgi endpoint. Vulnerability type: HTML Injection and Stored XSS in the area where addresses are added via ...