1745 matches found
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
Foxit PDF Reader 缓冲区错误漏洞
Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader due to a lack of proper initialization before the product accesses a pointer to an Annotation object. The vulnerability can be exploited to cause malicious code execution by...
Foxit PDF Editor 缓冲区错误漏洞
Foxit PDF Reader is China Foxit Foxit company a PDF reader. A buffer overflow vulnerability exists in Foxit PDF Reader due to a failure to validate the existence of an Annotation object prior to manipulating it. This vulnerability can be exploited to cause malicious code to be executed after the...
PT-2021-5389 · Foxit · Foxit Pdf Reader +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader and Foxit PDF Editor affected versions not specified Description: The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code on the target system by opening a specially crafted...
Foxit PDF Editor Text Annotation Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
Foxit PDF Editor Caret Annotation Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
Foxit PDF Reader Square Annotation Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
PT-2021-5314 · Foxit · Foxit Pdf Reader +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the...
PT-2021-6002 · Foxit · Foxit Phantompdf +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PhantomPDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the...
SRC-2021-0023 : Foxit Reader Annotation transitionToState Use-After-Free Remote Code Execution Vulnerability
Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
cron-utils: template injection allows attackers to inject arbitrary Java EL expressions leading to remote code execution
A flaw was found in cron-utils. End applications passing unsanitized user input which is subsequently parsed by the @Cron annotation can allow an attacker to execute arbitrary expressions using JavaEL which will be implicitly executed by the constraint validator. The highest threat from this...
cron-utils: template injection allows attackers to inject arbitrary Java EL expressions leading to remote code execution
A flaw was found in cron-utils. End applications passing unsanitized user input which is subsequently parsed by the @Cron annotation can allow an attacker to execute arbitrary expressions using JavaEL which will be implicitly executed by the constraint validator. The highest threat from this...
PT-2021-5377 · Foxit · Foxit Phantompdf +1
Name of the Vulnerable Software and Affected Versions: Foxit PhantomPDF versions affected versions not specified Foxit Reader versions affected versions not specified Description: The issue is related to a buffer overflow when handling annotation objects, which can allow a remote attacker to...
PT-2021-5331 · Foxit · Foxit Pdf Editor +2
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Foxit PhantomPDF affected versions not specified Foxit Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations...
PT-2021-5280 · Foxit · Foxit Pdf Editor
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this issue, where the target mus...
PT-2021-5448 · Foxit · Foxit Pdf Editor
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this issue, where the target mus...
PT-2021-5315 · Foxit · Foxit Pdf Editor +2
Name of the Vulnerable Software and Affected Versions: Foxit PhantomPDF versions affected versions not specified Foxit Reader versions affected versions not specified Foxit PDF Editor versions affected versions not specified Description: The issue is related to a buffer overflow when handling...
PT-2021-6060 · Foxit · Foxit Pdf Editor
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...
PT-2021-6064 · Foxit · Foxit Pdf Editor
Name of the Vulnerable Software and Affected Versions: Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability, where the...