CVE-2018-12111

Cross-site scripting (XSS) vulnerability in the Canon PrintMe EFI webinterface allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /wt3/mydocs.php URI.

Date published : 2018-06-11

https://www.exploit-db.com/exploits/44882/

https://gist.github.com/huykha/b16109b8e859a992b658dd18b2ee4a7c