2 matches found
CVE-2022-37365
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the saveAs...
CVE-2022-37365
CVE-2022-37365 affects PDF-XChange Editor. The flaw is in the saveAs method where the application exposes a JavaScript interface that allows writing arbitrary files, enabling an attacker to execute arbitrary code in the context of the current user. Exploitation requires user interaction (visiting...