Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 2:25 p.m.9 views

CVE-2021-27517

Foxit PDF SDK For Web through 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert in the Acrobat JavaScript API...

6.1CVSS7.4AI score0.0077EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-7923

Malware in sbrugna...

6.8CVSS6.4AI score0.03411EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-14269

Malware in sbrugna...

6.1CVSS6.3AI score0.0077EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-4572

Malware in sbrugna...

6.8CVSS6.4AI score0.02488EPSS
Exploits0References4
OSV
OSV
added 2021/07/20 12:15 p.m.3 views

CVE-2021-27517

Foxit PDF SDK For Web through 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert in the Acrobat JavaScript API...

6.1CVSS6.8AI score0.0077EPSS
Exploits0References1
NVD
NVD
added 2021/07/20 12:15 p.m.37 views

CVE-2021-27517

Foxit PDF SDK For Web through 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert in the Acrobat JavaScript API...

6.1CVSS0.0077EPSS
Exploits0References1
Prion
Prion
added 2021/07/20 12:15 p.m.15 views

Code injection

Foxit PDF SDK For Web through 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert in the Acrobat JavaScript API...

4.3CVSS6.5AI score0.0077EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/07/20 11:38 a.m.17 views

CVE-2021-27517

Foxit PDF SDK For Web through 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert in the Acrobat JavaScript API...

6.8AI score0.0077EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/28 12:0 a.m.4 views

Foxit PDF SDK ActiveX License Issue Vulnerability

Foxit PDF SDK ActiveX is China's Foxit Foxit company's a PDF software development kit, but also a visual programming components. The product provides PDF display and annotation features. A security vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier versions, which stems from a lack o...

7.8CVSS7AI score0.02208EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.16 views

Foxit PDF SDK ActiveX Installed (Windows)

Binary data foxitpdfsdkactivexinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.110 views

Foxit PDF SDK ActiveX < 5.5.1 Multiple Vulnerabilities

According to its version, the Foxit PDF SDK ActiveX application installed on the remote Windows host is prior to 5.5.1. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists due to a lack of security permission control which could allow LaunchURL...

9.3CVSS8.7AI score0.07992EPSS
Exploits11References11
CNVD
CNVD
added 2019/01/11 12:0 a.m.4 views

Foxit PDF SDK ActiveX Command Injection Vulnerability

Foxit PDF SDK ActiveX is China's Foxit Foxit Software Corporation of a PDF software development kit, but also a visual programming components, it provides PDF display and annotation and other functions. Foxit PDF SDK ActiveX 5.5.0 and previous versions of the command injection vulnerability, the...

7.8CVSS7.8AI score0.02706EPSS
Exploits1References1
CNVD
CNVD
added 2019/01/11 12:0 a.m.4 views

Foxit PDF SDK ActiveX Buffer Overflow Vulnerability

Foxit PDF SDK ActiveX is China's Foxit Foxit Software Corporation of a PDF software development kit, but also a visual programming components, it provides PDF display and annotation and other functions. A stack buffer overflow vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier...

7.8CVSS7.5AI score0.04896EPSS
Exploits1References1
NVD
NVD
added 2014/10/17 3:55 p.m.23 views

CVE-2014-8074

Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 through 5.0.1820 before 5.0.2.924 allows remote attackers to execute arbitrary code via a long string, related to global variables...

6.8CVSS7.9AI score0.03411EPSS
Exploits0References3
Prion
Prion
added 2014/10/17 3:55 p.m.18 views

Buffer overflow

Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 through 5.0.1820 before 5.0.2.924 allows remote attackers to execute arbitrary code via a long string, related to global variables...

6.8CVSS8.5AI score0.03411EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/17 3:0 p.m.29 views

CVE-2014-8074

Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 in Foxit PDF SDK ActiveX 2.3 through 5.0.1820 before 5.0.2.924 allows remote attackers to execute arbitrary code via a long string, related to global variables...

7.9AI score0.03411EPSS
Exploits0References3
Prion
Prion
added 2014/07/07 2:55 p.m.18 views

Buffer overflow

Buffer overflow in the FPDFBookmarkGetTitle method in Foxit PDF SDK DLL before 3.1.1.5005 allows context-dependent attackers to execute arbitrary code via unspecified vectors...

6.8CVSS8.3AI score0.02488EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/07/07 2:0 p.m.37 views

CVE-2014-4646

The CVE-2014-4646 vulnerability concerns Foxit PDF SDK DLLs with a buffer overflow in FPDFBookmark_GetTitle, prior to version 3.1.1.5005. The issue enables context-dependent attackers to execute arbitrary code, as described across multiple sources (NVD/NVD- mirrored entries and ZDI advisory). The...

6.8CVSS8AI score0.02488EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/07/07 2:0 p.m.23 views

CVE-2014-4646

Buffer overflow in the FPDFBookmarkGetTitle method in Foxit PDF SDK DLL before 3.1.1.5005 allows context-dependent attackers to execute arbitrary code via unspecified vectors...

7.8AI score0.02488EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2014/06/30 12:0 a.m.37 views

Foxit PDF SDK DLL FPDFBookmark_GetTitle Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on software built with vulnerable versions of the Foxit SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS7.1AI score0.02488EPSS
Exploits0References1
Rows per page
Query Builder