CVE-2016-11061
Xerox WorkCentre devices (models 3655/3655i, 58XX/58XXi, 59XX/59XXi, 6655/6655i, 72XX/72XXi, 78XX/78XXi, 7970/7970i) affected before firmware 073.xxx.086.15410. The issue stems from improper escaping of parameters in support/remoteUI/configrui.php, allowing an unauthenticated attacker to execute ...