Lucene search

K

CVE-2018-5158

🗓️ 11 Jun 2018 21:15:29Reported by mozillaType 
cve
 cve
🔗 web.nvd.nist.gov👁 129 Views🌐 4 Media mentions

The PDF viewer doesn't sanitize PostScript calculator functions, allowing injection of malicious JavaScript

Show more
Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
Patchstack
WordPress Algori PDF Viewer Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)
8 Nov 202400:00
patchstack
Prion
Code injection
11 Jun 201821:29
prion
NVD
CVE-2018-5158
11 Jun 201821:29
nvd
RedhatCVE
CVE-2018-5158
29 Jan 202016:02
redhatcve
UbuntuCve
CVE-2018-5158
10 May 201800:00
ubuntucve
Veracode
Code Injection
16 May 201902:25
veracode
Debian CVE
CVE-2018-5158
11 Jun 201821:29
debiancve
Github Security Blog
Malicious PDF can inject JavaScript into PDF Viewer
14 May 202201:22
github
Cvelist
CVE-2018-5158
11 Jun 201821:00
cvelist
Hacker One
Nextcloud: XSS in PDF Viewer
16 Mar 202002:01
hackerone
Rows per page
[
  {
    "product": "Firefox ESR",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "52.8",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Firefox",
    "vendor": "Mozilla",
    "versions": [
      {
        "lessThan": "60",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
11 Jun 2018 21:29Current
6.1Medium risk
Vulners AI Score6.1
CVSS26.8
CVSS38.8
EPSS0.015
129
.json
Report