CVE-2018-17313

MEDIUM

RICOH MP C307 Firmware - Stored Cross-Site Scripting via entryNameIn Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-17313. PoCs published by Ismail Tasdelen.

AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in RICOH MP C1803 JPN printers via the entryNameIn parameter in a POST request to /web/entry/en/address/adrsSetUserWizard.cgi. The payload injects HTML/JavaScript into the address book functionality.

Description

On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.

Exploits (1)

exploitdb WORKING POC
by Ismail Tasdelen · textwebappshardware
https://www.exploit-db.com/exploits/45526

This exploit demonstrates a stored XSS vulnerability in RICOH MP C1803 JPN printers via the entryNameIn parameter in a POST request to /web/entry/en/address/adrsSetUserWizard.cgi. The payload injects HTML/JavaScript into the address book functionality.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: RICOH MP C1803 JPN, RICOH MP C307
Auth required
Prerequisites: Access to the printer's web interface · Valid session cookies (risessionid, wimsesid)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45526/

Scores

CVSS v3 6.1
EPSS 0.0232
EPSS Percentile 81.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
ricoh/mp_c307_firmware
Published Sep 26, 2018
Tracked Since Feb 18, 2026