Cross-site scripting (XSS) vulnerability in the Canon PrintMe EFI webinterface allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /wt3/mydocs.php URI.Referenceshttps://www.exploit-db.com/exploits/44882/https://gist.github.com/huykha/b16109b8e859a992b658dd18b2ee4a7c
