Exploit for Improper Access Control in Papercut Papercut Mf CVE-2023-27350

## https://sploitus.com/exploit?id=06E04EFD-D601-5104-B8E0-10BBF9B55B85
# CVE-2023-27350

This PoC demonstrates how it’s possible to bypass authentication in PaperCut MF/NG versions starting from 8.0 up to, but not including, 20.1.7, 21.2.11, and 22.0.9. It allows interaction with the system without using valid login credentials.

# Shodan Prompts

1. http.html:"papercut"
2. http.html:"papercut" port:9191
3. http.title:"PaperCut Login"

# Usage

python cve-2023-27350.py 127.0.0.1



https://nvd.nist.gov/vuln/detail/CVE-2023-27350