SUSE CVE-2020-18972

Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'...

DEBIAN-CVE-2020-18972

Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'...

UBUNTU-CVE-2020-18972

Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'...

Sourceforge PoDoFo 信息泄露漏洞

PoDoFo is a free, portable and easy-to-use library for parsing, modifying and creating PDFs.PoDoFo version 0.9.6 is vulnerable to information disclosure. An attacker can use IsNextToken in src/base/PdfToenizer.cpp to obtain sensitive information...

PT-2019-6172 · Podofo +2 · Podofo +2

Name of the Vulnerable Software and Affected Versions: PoDoFo version 0.9.6 Description: The issue is related to the exposure of sensitive information to unauthorized actors. It involves the IsNextToken function in the src/base/PdfToenizer.cpp component, which can be exploited by attackers to...