Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
papercut papercut ng vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-4568
PaperCut NG allows for unauthenticated XMLRPC commands to be run by default. Versions 22.0.12 and below are confirmed to be affected, but later versions may also be affected due to lack of a vendor supplied patch.
Papercut Papercut Ng
9.8
CVSSv3
CVE-2023-39143
PaperCut NG and PaperCut MF prior to 22.1.3 on Windows allow path traversal, enabling malicious users to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled (a very common configuration).
Papercut Papercut Mf
Papercut Papercut Ng
1 Github repository
7.5
CVSSv3
CVE-2023-3486
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated malicious user to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating a...
Papercut Papercut Mf
Papercut Papercut Ng
8.8
CVSSv3
CVE-2023-2533
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in PaperCut NG/MF, which, under specific conditions, could potentially enable an malicious user to alter security settings or execute arbitrary code. This could be exploited if the target is an admin with a cur...
Papercut Papercut Mf 22.0.10
Papercut Papercut Ng 22.0.10
7.5
CVSSv3
CVE-2023-27351
This vulnerability allows remote malicious users to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue result...
Papercut Papercut Ng
Papercut Papercut Mf
9.8
CVSSv3
CVE-2023-27350
This vulnerability allows remote malicious users to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from ...
Papercut Papercut Ng
Papercut Papercut Mf
10 Github repositories
3 Articles
9.8
CVSSv3
CVE-2019-12135
An unspecified vulnerability in the application server in PaperCut MF and NG versions 18.3.8 and previous versions and versions 19.0.3 and previous versions allows remote malicious users to execute arbitrary code via an unspecified vector.
Papercut Papercut Mf
Papercut Papercut Ng
9.8
CVSSv3
CVE-2019-8948
PaperCut MF prior to 18.3.6 and PaperCut NG prior to 18.3.6 allow script injection via the user interface, aka PC-15163.
Papercut Papercut Mf
Papercut Papercut Ng
NA
CVE-2014-2658
Unspecified vulnerability in Papercut MF and NG prior to 14.1 (Build 26983) allows malicious user to cause a denial of service via unknown vectors.
Papercut Papercut Ng
Papercut Papercut Mf 14.0
Papercut Papercut Mf 13.2
Papercut Papercut Mf 13.1
Papercut Papercut Mf 13.5
Papercut Papercut Mf 13.4
Papercut Papercut Ng 13.4
Papercut Papercut Ng 13.1
Papercut Papercut Ng 13.0
Papercut Papercut Ng 12.5
Papercut Papercut Ng 12.4
Papercut Papercut Ng 14.0
Papercut Papercut Ng 13.5
Papercut Papercut Mf 13.0
Papercut Papercut Ng 13.2
Papercut Papercut Mf 12.1
Papercut Papercut Mf 12.0
Papercut Papercut Mf 12.3
Papercut Papercut Mf 12.2
Papercut Papercut Ng 12.1
Papercut Papercut Ng 12.0
Papercut Papercut Mf
NA
CVE-2014-2659
Cross-site request forgery (CSRF) vulnerability in the admin UI in Papercut MF and NG prior to 14.1 (Build 26983) allows remote malicious users to hijack the authentication of administrators via unspecified vectors.
Papercut Papercut Mf
Papercut Papercut Ng
Papercut Papercut Mf 13.3
Papercut Papercut Ng 13.3
Papercut Papercut Mf 13.2
Papercut Papercut Mf 12.4
Papercut Papercut Mf 12.3
Papercut Papercut Ng 12.2
Papercut Papercut Ng 12.1
Papercut Papercut Ng 13.5
Papercut Papercut Mf 13.5
Papercut Papercut Ng 13.2
Papercut Papercut Ng 13.1
Papercut Papercut Mf 12.0
Papercut Papercut Ng 12.5
Papercut Papercut Mf 13.4
Papercut Papercut Ng 13.4
Papercut Papercut Ng 13.0
Papercut Papercut Mf 12.5
Papercut Papercut Ng 12.4
Papercut Papercut Ng 12.3
Papercut Papercut Mf 14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2