4 matches found
CVE-2020-10667
The web application exposed by the Canon Oce Colorwave 500 4.0.0.0 printer is vulnerable to Stored XSS in /TemplateManager/indexExternalLocation.jsp. The vulnerable parameter is maptemplatename. NOTE: this is fixed in the latest version...
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2219)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Canon Oce Colorwave Printer Cross Site Scripting (CVE-2020-10667)
A cross-site scripting vulnerability exists in Canon Oce Colorwave printer. Successful exploitation of this vulnerability could allow a remote attacker to inject an arbitrary web script into the affected system...
CVE-2020-10667
Canon Oce Colorwave 500 printer web application (version 4.0.0.0) is affected by a Stored XSS in /TemplateManager/indexExternalLocation.jsp via the map(template_name) parameter. The root cause is insufficient input validation in the web interface, allowing injection of arbitrary client-side scrip...