8 matches found
EUVD-2018-9068
Malware in sbrugna...
RICOH MP C307 Cross-site Scripting (CVE-2018-17313)
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...
RICOH MP C307 Cross-Site Scripting Vulnerability
The RICOH MP C307 is a multifunction printer device from Ricoh Japan. A cross-site scripting vulnerability exists in the address addition area of the RICOH MP C307. A remote attacker can exploit this vulnerability by sending the 'entryNameIn' parameter to the...
CVE-2018-17313
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
CVE-2018-17313
RICOH MP C307 is affected by CVE-2018-17313: HTML Injection and Stored XSS in the address-adding flow via /web/entry/en/address/adrsSetUserWizard.cgi, triggered by the entryNameIn parameter. Impact is stored XSS in the web context; CVSS2 base 4.3 (NETWORK, MEDIUM) and CVSS3 base 6.1 (NETWORK, LOW...
CVE-2018-17313
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...
RICOH MP C307 Printer Cross Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: RICOH MP C307 Printer - HTML Injection and Stored XSS Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...
RICOH MP C307 Printer Cross Site Scripting
Exploit Title: RICOH MP C307 Printer - HTML Injection and Stored XSS Date: 2018-09-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...