CVE 2020-25890 | XSS in Kyocera Printer - ECOSYS M2640IDW

This post will describe how to explore Cross-Site Scripting in web panel in Kyocera printer

Web Panel Kyocera

PoC - exploiting XSS on web panel

Without being authenticated it is allowed add a new address in “Machine Address Book”, this feature allows to save frequently used destinations

Add new address in “Machine Address book”

Inserting the XSS payload in the “Name” field and saving the address is possible identify the result of attack

XSS Payload

XSS on the page