5 matches found
RICOH Aficio MP 305+ Cross-Site Scripting Vulnerability
The RICOH Aficio MP 305+ is a multifunction printer device from Ricoh Japan. A cross-site scripting vulnerability exists in the address add area in the RICOH Aficio MP 305+. A remote attacker can exploit this vulnerability by sending the 'entryNameIn' parameter to the...
CVE-2018-17314
On the RICOH Aficio MP 305+ printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
CVE-2018-17314
Affected product : RICOH Aficio MP 305+ printer. Vulnerability : HTML Injection and Stored XSS in the address-adding flow. Triggered by the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. Root cause / detail : Cross-site scripting vulnerability reported across multiple sourc...
CVE-2018-17314
On the RICOH Aficio MP 305+ printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
RICOH MP 305+ Printer Cross Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: RICOH MP 305+ Printer - HTML Injection and Stored XSS Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...