Vulnerabilities > Ricoh > Aficio MP 301Spf Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-09-26 CVE-2018-17312 Cross-site Scripting vulnerability in Ricoh Aficio MP 301Spf Firmware
On the RICOH Aficio MP 301 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.
network
low complexity
ricoh CWE-79
6.1