Skip to main content

0 replies

Papercut Print Manager Flaw Let Attackers Perform Sophisticated Attacks

Art PostArt PostAdmin VIP

The PaperCutNG Mobility Print 1.0.3512 application has been identified to have a cross-site request forgery vulnerability that leads to sophisticated phishing attacks.

This vulnerability exists because the application lacks CSRF defenses such as anti-CSRF tokens, header origin validation, same-site cookies, etc.

The Cross-Site Request Forgery (CSRF) attack pushes authenticated users to send requests to Web applications that they are already authorized to access. CSRF attacks take advantage of the trust a Web application has in a verified user.

Details of the Vulnerability

The vulnerability is tracked as CVE-2023-2508 with a CVSS base score of 5.3.

According to the information shared in Fluidattacks, an unauthenticated attacker can launch a CSRF attack against an instance administrator using the PaperCutNG Mobility Print version 1.0.3512 application to configure the client’s host.  more here

If you like something I've posted please feel free to click the "like" button!

Original Post

Add Reply

Post

Membership Required

We're sorry. You must be signed in to continue. Sign In or Register
×
Are you sure you want to remove from your Block List?
×
Loading...
×
When you block a person, they can no longer invite you to a private message or post to your profile wall. Replies and comments they make will be collapsed/hidden by default. Finally, you'll never receive email notifications about content they create or likes they designate for your content.
Note: if you proceed, you will no longer be following .
×
Advanced Search
Advanced Search
Link copied to your clipboard.
×

Access to this requires a premium membership.

VIP/Premium Membership

A Premium Membership can carry you to the top of the sales ladder!

Premium Membership Includes:

  • Access to the Premium forums (I'm not going to post all of my secrets in the general forums, but I will post them in the Premium forums).
  • Unlimited downloads of all documents which include competitive proposals, Print4Pay Hotels "Pricing on the Street", competitive quotes, competitive sales orders, RFP's/RFQ's and word/xcel documents that I've created that will help you track your sales, self help sales documents, and much more!
  • As long as you're a Premium Member, you can lean on me for additional help with creative ideas of how to close the deal, add additional value with a third party solution, whatever you need in order to help WIN the deal!
  • Leads, every now and then I'll get a few leads from across the country, this is due the lead generation site I created and all the blogs I've written. A Premium Membership will enable you to receive these leads.

Follow the link on the forums to get your Premium Membership. If you're interested in a lifetime membership please send me an email arthurkpost@gmail.com and we'll send you a pay pal invoice of $399 of a LIFETIME Print4Pay Hotel membership.

$115.00 per 12 Months (plus tax if applicable)
×