Cross-site scripting (XSS) vulnerability in the Web Server in Xerox WorkCentre 7132, 7228, 7235, and 7245 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/42595
http://www.xerox.com/downloads/usa/en/c/cert_XRX08_004.pdf
http://www.vupen.com/english/advisories/2008/1628/references
http://www.securityfocus.com/bid/29345