CVE-2018-15884

Severity CVSS v4.0:
Pending analysis
Type:
CWE-79 Cross-Site Scripting (XSS)
Publication date:
28/08/2018
Last modified:
17/06/2026

Description

RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:ricoh:mp_c4504ex_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:ricoh:mp_c4504ex:-:*:*:*:*:*:*:*