This exploit demonstrates a stored cross-site scripting (XSS) vulnerability in Longshine print servers (LCS-PS110, LCS-PS101-A, LCS-PS112) due to improper sanitization of the 'NDSContext' field in the NetWare NDS Settings area. The PoC provides a URL to inject arbitrary JavaScript code, which executes when accessing the NETWARE.HTM page.
Classification
Working Poc 90%
Target:
Longshine LCS-PS110, LCS-PS101-A, LCS-PS112 Print Servers (Firmware versions: 9.08.47L 0015, 8.02.30L, 6.02.35L, 6.03.39L 0007, 6.03.39L 0004)
No auth needed
Prerequisites:
Network access to the vulnerable print server · Victim must access the NETWARE.HTM page after injection