Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

49 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:49 a.m.4 views

CVE-2022-37406

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

4.8CVSS6.3AI score0.00396EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-9067

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS
Exploits2References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-9069

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS
Exploits3References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-40039

Malicious code in bioql PyPI...

4.8CVSS5AI score0.00396EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/02/14 12:0 a.m.18 views

RICOH Aficio SP 4210N Cross-site Scripting (CVE-2022-37406)

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...

4.8CVSS5.3AI score0.00396EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/02/13 12:0 a.m.14 views

RICOH Aficio MP 301 Cross-site Scripting (CVE-2018-17312)

On the RICOH Aficio MP 301 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...

6.1CVSS6.2AI score0.00328EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2024/02/13 12:0 a.m.12 views

RICOH Aficio MP 305+ Cross-site Scripting (CVE-2018-17314)

On the RICOH Aficio MP 305+ printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...

6.1CVSS6.2AI score0.00328EPSS
Exploits3References2
OSV
OSVadded 2022/12/07 4:15 a.m.1 views

CVE-2022-37406

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

4.8CVSS5.9AI score
Exploits0References3
NVD
NVDadded 2022/12/07 4:15 a.m.9 views

CVE-2022-37406

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

4.8CVSS0.00396EPSS
Exploits0References3
Prion
Prionadded 2022/12/07 4:15 a.m.10 views

Cross site scripting

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

4.3CVSS4.8AI score0.00396EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2022/12/07 12:0 a.m.45 views

CVE-2022-37406

CVE-2022-37406 affects Ricoh Aficio SP 4210N firmware versions prior to Web Support 1.05. The vulnerability is a cross-site scripting (XSS) issue in Web Image Monitor that can be exploited by a remote, authenticated attacker with administrative privileges to inject arbitrary scripts. Remediation ...

4.8CVSS4.8AI score0.00396EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/07 12:0 a.m.2 views

PT-2022-23978 · Ricoh · Aficio Sp 4210N

Name of the Vulnerable Software and Affected Versions: Aficio SP 4210N firmware versions prior to Web Support 1.05 Description: A cross-site scripting issue allows a remote authenticated attacker with administrative privileges to inject an arbitrary script. Recommendations: For Aficio SP 4210N...

4.8CVSS4.8AI score0.00396EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2022/12/07 12:0 a.m.3 views

CVE-2022-37406

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

4.9AI score0.00396EPSS
Exploits0References3
Cvelist
Cvelistadded 2022/12/07 12:0 a.m.11 views

CVE-2022-37406

Cross-site scripting vulnerability in Aficio SP 4210N firmware versions prior to Web Support 1.05 allows a remote authenticated attacker with an administrative privilege to inject an arbitrary script...

5.1AI score0.00396EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2022/11/17 2:15 a.m.2 views

RICOH Aficio SP 4210N vulnerable to cross-site scripting

Overview Aficio SP 4210N provided by RICOH COMPANY, LTD. contains a cross-site scripting vulnerability CWE-79 in Web Image Monitor. Yudai Morii, Takaya Noma, Hiroki Yasui, Takayuki Sasaki and Katsunari Yoshioka of Yokohama National University reported this vulnerability to IPA. JPCERT/CC...

4.8CVSS6AI score0.00396EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2022/11/16 12:0 a.m.16 views

JVN#24659622: RICOH Aficio SP 4210N vulnerable to cross-site scripting

Aficio SP 4210N provided by RICOH COMPANY, LTD. contains a cross-site scripting vulnerability CWE-79 in Web Image Monitor. Impact An arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege. Solution Update the firmware...

4.8CVSS4.9AI score0.00396EPSS
Exploits0
CNVD
CNVDadded 2021/07/09 12:0 a.m.5 views

Unauthorized Access Vulnerability in Aficio MP C2800 at Ricoh (China) Investment Co.

Ricoh China Investment Co., Ltd. provides services and solutions such as document output management services and IT solutions such as office image processing equipment e.g., MFPs, printers, etc., production digital printers, and more. An unauthorized access vulnerability exists in the Ricoh China...

6.9AI score
Exploits0
CNVD
CNVDadded 2021/07/06 12:0 a.m.11 views

Unauthorized Access Vulnerability in RICOH Aficio MP 301

Ricoh generally refers to Ricoh. Ricoh is a leading Japanese manufacturer of office equipment and optical machinery and a Fortune 500 company. An unauthorized access vulnerability exists in the RICOH Aficio MP 301, which can be exploited by attackers to obtain sensitive information...

6.8AI score
Exploits0
CNVD
CNVDadded 2021/06/30 12:0 a.m.13 views

Unauthorized Access Vulnerability in RICOH Aficio MP C305 at Ricoh (China) Investment Co.

Ricoh China Investment Co., Ltd. provides services and solutions such as document output management services and IT solutions such as office image processing equipment e.g., MFPs, printers, etc., production digital printers, and more. An unauthorized access vulnerability exists in the RICOH Afici...

6.8AI score
Exploits0
CNVD
CNVDadded 2021/06/28 12:0 a.m.9 views

Unauthorized Access Vulnerability in RICOH Aficio Series Printers at Ricoh (China) Investment Co.

Ricoh China Investment Co., Ltd. provides services and solutions such as document output management services and IT solutions such as office image processing equipment e.g., MFPs, printers, etc., production digital printers, and more. An unauthorized access vulnerability exists in the RICOH Afici...

6.8AI score
Exploits0
Rows per page
Query Builder