Vulnerability Database

296,225

Total vulnerabilities in the database

CVE-2008-2825

Cross-site scripting (XSS) vulnerability in the embedded Web Server in Xerox WorkCentre M123, M128, and 133 and WorkCentre Pro 123, 128, and 133 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • Published: Jun 23, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-2825
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
xerox / workcentre m128 m128.x
xerox / workcentre m128-unknown m128-unknown.x
xerox / workcentre m123 m123.x
xerox / workcentre m123-unknown m123-unknown.x
xerox / workcentre m133 m133.x
xerox / workcentre m133-unknown m133-unknown.x