Skip to main content

Print

6 CVEs product

Monthly

CVE-2020-5674 HIGH This Week

Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Album Print Color Calibration Utility Colorbase Colorio Easy Print +29
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2020-15232 Maven CRITICAL PATCH Act Now

In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XXE Print
NVD GitHub
CVSS 3.1
9.1
EPSS
1.3%
CVE-2020-15231 Maven MEDIUM PATCH This Month

In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Print
NVD GitHub
CVSS 3.1
6.1
EPSS
0.8%
CVE-2019-14339 MEDIUM POC This Month

The ContentProvider in the Canon PRINT jp.co.canon.bsd.ad.pixmaprint 2.5.5 application for Android does not properly restrict canon.ij.printer.capability.data data access. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Information Disclosure Print
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
5.4%
CVE-2014-8078 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0 for Drupal allows. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Print
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2012-2084 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Print
NVD
CVSS 2.0
4.3
EPSS
0.7%
EPSS 0% CVSS 7.8
HIGH This Week

Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Album Print Color Calibration Utility +31
NVD
EPSS 1% CVSS 9.1
CRITICAL PATCH Act Now

In mapfish-print before version 3.24, a user can do to an XML External Entity (XXE) attack with the provided SDL style. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XXE Print
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM PATCH This Month

In mapfish-print before version 3.24, a user can use the JSONP support to do a Cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Print
NVD GitHub
EPSS 5% CVSS 5.5
MEDIUM POC This Month

The ContentProvider in the Canon PRINT jp.co.canon.bsd.ad.pixmaprint 2.5.5 application for Android does not properly restrict canon.ij.printer.capability.data data access. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Information Disclosure Print
NVD Exploit-DB
EPSS 0% CVSS 3.5
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0 for Drupal allows. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Print
NVD
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Print
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy