CVE-2018-17167

Published: Mar 20, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

PrinterOn Enterprise 4.1.4 suffers from multiple authenticated stored XSS vulnerabilities via the (1) "Machine Host Name" or "Server Serial Number" field in the clustering configuration, (2) "name" field in the Edit Group configuration, (3) "Rule Name" field in the Access Control configuration, (4) "Service Name" in the Service Configuration, or (5) First Name or Last Name field in the Edit Account configuration.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/DrunkenShells/Disclosures/tree/master/CVE-2018-17167-XSS-PrinterON

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-17167

Description

Affected Products

References