|
223921
|
6.1 |
MEDIUM
Network
|
rainloop
|
webmail
|
RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header.
|
CWE-79
Cross-site Scripting
|
CVE-2019-13389
|
2024-11-21 13:24 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223922
|
9.8 |
CRITICAL
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the okhtmlfile and failhtmlfile parameters of several functionalities of the w…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-13202
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223923
|
9.8 |
CRITICAL
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the LPD service. This would allow an unauthenticated attacker to cause a Denia…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-13201
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223924
|
6.1 |
MEDIUM
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Reflected XSS. Successful exploitation of this vulnerability can lead to session hijacki…
|
CWE-79
Cross-site Scripting
|
CVE-2019-13200
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223925
|
6.5 |
MEDIUM
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) did not implement any mechanism to avoid CSRF. Successful exploitation of this vulnerability can lead to the takeover of a local a…
|
CWE-352
Origin Validation Error
|
CVE-2019-13199
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223926
|
6.1 |
MEDIUM
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Stored XSS. Successful exploitation of this vulnerability can lead to session hijacking …
|
CWE-79
Cross-site Scripting
|
CVE-2019-13198
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223927
|
9.8 |
CRITICAL
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the URI paths of the web application that would allow an unauthenticated attac…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-13197
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223928
|
8.8 |
HIGH
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the arg4 and arg9 parameters of several functionalities of the web application…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-13196
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223929
|
7.5 |
HIGH
Network
|
kyocera
|
ecosys_m5526cdw_firmware
|
The web application of some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was vulnerable to path traversal, allowing an unauthenticated user to retrieve arbitrary files, or check if…
|
CWE-22
Path Traversal
|
CVE-2019-13195
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223930
|
9.8 |
CRITICAL
Network
|
xerox
|
phaser_3320_firmware
|
Some Xerox printers (such as the Phaser 3320 V53.006.16.000) were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an attacker to execu…
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-13172
|
2024-11-21 13:24 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
