CVE-2019-25324

MEDIUM

RICOH Web Image Monitor 1.09 - HTML Injection via Address Configuration CGI Script

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25324. PoCs published by Ismail Tasdelen.

AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in RICOH Web Image Monitor v1.09 via the 'entryNameIn' and 'entryDisplayNameIn' parameters in the 'adrsSetUserWizard.cgi' function. The payload '><h1>ismailtasdelen' is used to inject arbitrary HTML content.

Description

RICOH Web Image Monitor 1.09 contains an HTML injection vulnerability in the address configuration CGI script that allows attackers to inject malicious HTML code. Attackers can exploit the entryNameIn and entryDisplayNameIn parameters to insert arbitrary HTML content, potentially enabling cross-site scripting attacks.

Exploits (1)

exploitdb WORKING POC
by Ismail Tasdelen · textwebappshardware
https://www.exploit-db.com/exploits/47827

This exploit demonstrates an HTML injection vulnerability in RICOH Web Image Monitor v1.09 via the 'entryNameIn' and 'entryDisplayNameIn' parameters in the 'adrsSetUserWizard.cgi' function. The payload '><h1>ismailtasdelen' is used to inject arbitrary HTML content.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: RICOH Web Image Monitor v1.09
No auth needed
Prerequisites: Access to the vulnerable endpoint '/web/entry/en/address/adrsSetUserWizard.cgi'
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/47827
Various Sources product
https://www.ricoh.com/

Scores

CVSS v3 6.1
EPSS 0.0022
EPSS Percentile 12.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
RICOH/RICOH Web Image Monitor 1.09
Published Feb 12, 2026
Tracked Since Feb 18, 2026