18 matches found
CVE-2021-28669
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...
CVE-2021-28668
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...
CVE-2021-28669
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...
CVE-2021-28668
Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities...
CVE-2021-28670
Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045/C8055 before 103.002.030.32000 and C8070 before 103.003.030.32000 allow unauthorized users, by leveraging the Scan To Mailbox feature, to delete arbitrary files from the disk...
Xerox AltaLink 安全漏洞
Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a print-copy function. A security vulnerability exists in Xerox AltaLink that allows the ability to set configuration properties without requiring administrator privileges. The following products and versions a...
Xerox AltaLink SQL注入漏洞
Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a print-copy function. A SQL injection vulnerability exists in Xerox AltaLink B80xx, which affects the following products and versions: Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before...
Xerox AltaLink 安全漏洞
Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a printing and copying function. A security vulnerability exists in Xerox AltaLink that allows a user with administrative privileges to disable data encryption on the device. The following products and versions...
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...
Cross site request forgery (csrf)
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...
CVE-2019-19832
CVE-2019-19832 affects Xerox AltaLink C8035 printers and is due to a Cross-Site Request Forgery (CSRF) flaw in the Web application. The vulnerability allows an attacker to trigger a request to add users via the xerox.set URI in the Device User Database form, requiring that the frmUserName value b...
CVE-2019-19832
Xerox AltaLink C8035 printers allow CSRF. A request to add users is made in the Device User Database form field to the xerox.set URI. The frmUserName value must have a unique name...
Xerox AltaLink C8035 Printer - Cross-Site Request Forgery (Add Admin)
Xerox AltaLink C8035 Printer - Cross-Site Request Forgery Add Admin Exploit Title: Xerox AltaLink C8035 Printer - Cross-Site Request Forgery Add Admin Date: 2018-12-17 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.xerox.com/ Hardware Link :...
Xerox AltaLink C8035 Printer Cross-Site Request Forgery Vulnerability
The Xerox AltaLink C8035 is a multifunction printer from Xerox USA. A cross-site request forgery vulnerability exists in the Xerox AltaLink C8035. The vulnerability stems from the WEB application not adequately verifying that the request is from a trusted user. An attacker could use this...
Xerox AltaLink C8035 Printer - Cross-Site Request Forgery (Add Admin)
Exploit Title: Xerox AltaLink C8035 Printer - Cross-Site Request Forgery Add Admin Date: 2018-12-17 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.xerox.com/ Hardware Link : https://www.office.xerox.com/en-us/multifunction-printers/altalink-c8000-series Software : Xerox Printer...
Xerox AltaLink C8035 Printer Cross Site Request Forgery
Exploit Title: Xerox AltaLink C8035 Printer - Cross-Site Request Forgery Add Admin Date: 2018-12-17 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.xerox.com/ Hardware Link : https://www.office.xerox.com/en-us/multifunction-printers/altalink-c8000-series Software : Xerox Printer...
Xerox AltaLink C8035 Printer Cross Site Request Forgery Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Xerox AltaLink C8035 Printer - Cross-Site Request Forgery Add Admin Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.xerox.com/ Hardware Link :...