Exploitation Summary
EIP tracks 1 public exploit for CVE-2018-19936. PoCs published by bzyo.
AI-analyzed exploit summary This writeup describes an arbitrary file deletion vulnerability in PrinterOn Enterprise 4.1.4, where authenticated or guest users can delete system files by exploiting improper URI validation in the web page field during print job submission.
Description
PrinterOn Enterprise 4.1.4 allows Arbitrary File Deletion.
Exploits (1)
exploitdb
WRITEUP
by bzyo · textwebappsmultiple
https://www.exploit-db.com/exploits/45969
This writeup describes an arbitrary file deletion vulnerability in PrinterOn Enterprise 4.1.4, where authenticated or guest users can delete system files by exploiting improper URI validation in the web page field during print job submission.
Classification
Writeup 100%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target:
PrinterOn Enterprise 4.1.4
No auth needed
Prerequisites:
Access to the CPS URL as a guest or authenticated user
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/150750/PrinterOn-Enterprise-4.1.4-Arbitrary-File-Deletion.html
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/45969
Scores
CVSS v3
6.5
EPSS
0.0107
EPSS Percentile
60.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-20
Status
published
Products (1)
printeron/printeron
4.1.4
Published
Dec 17, 2018
Tracked Since
Feb 18, 2026