Lucene search
+L

25 matches found

CNVD
CNVD
added 2018/10/17 12:0 a.m.6 views

Foxit Reader and Foxit PhantomPDF for Windows Memory Misreference Vulnerability (CNVD-2018-23730)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A memory misreference vulnerability exists in the handling of the fillColor property of the radio button in Foxit Reader 9.2.0.9297...

8.8CVSS8.7AI score0.03855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/10/11 12:0 a.m.31 views

Foxit PhantomPDF fillColor Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2AI score0.03855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/10/11 12:0 a.m.33 views

Foxit PhantomPDF exportValues Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS1.9AI score0.03855EPSS
Exploits0References1
NVD
NVD
added 2014/04/08 2:22 p.m.17 views

CVE-2012-1561

Cross-site scripting XSS vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."...

4.3CVSS5.6AI score0.03036EPSS
Exploits0References13
Cvelist
Cvelist
added 2014/04/08 2:0 p.m.24 views

CVE-2012-1561

Cross-site scripting XSS vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."...

5.6AI score0.03036EPSS
Exploits0References13
Rows per page
Query Builder