2575 matches found
CVE-2022-33009
A stored cross-site scripting XSS vulnerability in LightCMS v1.3.11 allows attackers to execute arbitrary web scripts or HTML via uploading a crafted PDF file...
CVE-2024-34909
An arbitrary file upload vulnerability in KYKMS v1.0.1 and below allows attackers to execute arbitrary code via uploading a crafted PDF file...
CVE-2024-34906
An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file...
CVE-2024-34913
An arbitrary file upload vulnerability in r-pan-scaffolding v5.0 and below allows attackers to execute arbitrary code via uploading a crafted PDF file...
CVE-2021-27591
When a user opens manipulated Portable Document Format .PDF format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application...
CVE-2021-31478
This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop 16.6.3.84. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
PT-2025-53722
Name of the Vulnerable Software and Affected Versions machsol machpanel version 8.0.32 Description A stored and reflected cross-site scripting issue exists in machsol machpanel version 8.0.32. This allows attackers to execute arbitrary web scripts or HTML through a crafted PDF file. The issue...
CVE-2025-57462
Stored cross-site scripting xss in machsol machpanel 8.0.32 allows attackers to execute arbitrary web scripts or HTML via a crafted PDF file...
CVE-2025-14421
pdfforge PDF Architect PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the...
CVE-2025-14411
CVE-2025-14411 affects Soda PDF Desktop. A parsing flaw in PDF handling allows an out-of-bounds read due to insufficient validation of input data, leading to information disclosure. Exploitation requires user interaction (target must open a malicious page/file). The flaw is described as enabling ...
CVE-2025-60081 WordPress PDF for Contact Form 7 plugin <= 6.5.0 - Deserialization of untrusted data vulnerability
Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Contact Form 7 pdf-for-contact-form-7 allows Object Injection.This issue affects PDF for Contact Form 7: from n/a through = 6.5.0...
PT-2025-50784
Name of the Vulnerable Software and Affected Versions Soda PDF Desktop affected versions not specified Description A memory corruption issue exists in the PDF file parsing functionality of Soda PDF Desktop, potentially leading to information disclosure. The issue was discovered by Rocco Calvi...
DEBIAN-CVE-2025-64503
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In cups-filters prior to 1.28.18, by crafting a PDF file with a large MediaBox value, an attacker can cause CUPS-Filter 1.x’s pdftoraster tool to...
PT-2025-49099
Name of the Vulnerable Software and Affected Versions tika-core versions 1.13 through 3.2.1 tika-parser-pdf-module versions 2.0.0 through 3.2.1 tika-parsers versions 1.13 through 1.28.5 Description Apache Tika incorrectly handles XML external entities when parsing XFA XML Forms Architecture conte...
EUVD-2018-1025
Malware in sbrugna...
EUVD-2013-4830
Malware in sbrugna...
EUVD-2018-10187
Malware in sbrugna...
EUVD-2018-17446
Malware in sbrugna...
EUVD-2009-1180
Malware in sbrugna...
EUVD-2018-19781
Malware in sbrugna...