CNNVD-202602-2181 Information

CNNVD ID

CNNVD-202602-2181

Related CVE

CVE-2019-25324

• CNNVD Published: 2026-02-12

Description (Chinese)

Ricoh Web Image Monitor是日本理光（Ricoh）公司的一个多功能打印设备的网络管理界面，提供远程监控与配置功能。 RICOH Web Image Monitor 1.09版本存在跨站脚本漏洞，该漏洞源于地址配置CGI脚本中entryNameIn和entryDisplayNameIn参数存在HTML注入，可能导致跨站脚本攻击。

Description (English)

Ricoh Web Image Monitor is a web-based management interface for a multi-purpose printing device of the Japanese company Ricoh, providing remote monitoring and configuration. The RICOH Web Image Monitor 1.09 version has a cross-site script loophole, which stems from the use of HTML injections in the CGI script configuration of the entrynamein and entrydisplaynamein parameters, which may result in a cross-stop script attack.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

理光

Published

2026-02-12

Last Modified

2026-02-24

References

http://support-download.com/services/device/webhlp/nb/gen/v140cc1/en/p_top010.html https://www.exploit-db.com/exploits/47827 https://www.ricoh.com/ https://www.vulncheck.com/advisories/ricoh-web-image-monitor-html-injection