CVE-2022-37375

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Design/Logic Flaw

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2022-37375

CVE-2022-37375 affects PDF-XChange Editor. The vulnerability lies in the parsing of JPC files where crafted JPC data can trigger a read past the end of an allocated buffer, enabling an information disclosure. Exploitation requires user interaction (visiting a malicious page or opening a malicious...

CVE-2022-37375

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-18069

The CVE-2018-18069 entry concerns the WordPress plugin sitepress-multilingual-cms (WPML) up to version 3.6.3. A Cross-Site Scripting (XSS) flaw exists in the process_forms function via any locale_file_name_ parameter (e.g., locale_file_name_en) when making an authenticated request to wp-admin/adm...

CVE-2017-18069

CVE-2017-18069 affects Android for MSM, Firefox OS for MSM, and QRD Android builds that use CAF Linux kernel, where an improper message length calculation in oem_cmd_handler() while processing a WLAN_NL_MSG_OEM netlink message leads to a buffer overread. Public data lists CVSS base scores around ...