exploitDog

CVE-2018-10326

Опубликовано: 17 мая 2018

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

PrinterOn Enterprise 4.1.3 suffers from multiple authenticated stored XSS vulnerabilities via the (1) department field in the printer configuration, (2) description field in the print server configuration, and (3) username field for authentication to print as guest.

Ссылки

https://github.com/bzyo/CVE-PoCs/tree/master/CVE-2018-10326
Exploit
Third Party Advisory
https://github.com/bzyo/CVE-PoCs/tree/master/CVE-2018-10326
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:printeron:printeron:4.1.3:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 54%

0.0031

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-xj3q-3fqm-9f4h

CVSS3: 5.4

github

больше 3 лет назад

PrinterOn Enterprise 4.1.3 suffers from multiple authenticated stored XSS vulnerabilities via the (1) department field in the printer configuration, (2) description field in the print server configuration, and (3) username field for authentication to print as guest.

EPSS

Процентиль: 54%

0.0031

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79