Foxit Reader Javascript Field fileSelect Use After Free Vulnerability

Summary A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open t...

Foxitsoftware Foxit Studio Photo Remote Code Execution (CVE-2020-8878)

A remote code execution vulnerability exists in foxitsoftware foxit studio photo. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

appstore.foxitsoftware.com XSS vulnerability

Open Bug Bounty ID: OBB-666679 Description| Value ---|--- Affected Website:| appstore.foxitsoftware.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Foxit Reader 5.4.3.0920 - Crash (PoC)

Title : Foxit Reader suffers from Division By Zero Version : 5.4.3.0920 Date : 2012-09-28 Vendor : http://www.foxitsoftware.com/ Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 Bug : ---- division by zero vulnerability during the handling of the pdf...

Foxit Reader PDF文件处理多个代码执行和绕过授权漏洞

BUGTRAQ ID: 34035 CVECAN ID: CVE-2009-0191,CVE-2009-0836,CVE-2009-0837 Foxit Reader是一款小型的PDF文档查看器和打印程序。 1 Foxit Reader在处理JBIG2符号字典段时存在错误，特制的PDF文件可能导致引用未经初始化的内存。 2 如果PDF文件中定义了Open/Execute a file操作，Foxit Reader可能会未经用户确认便打开或执行PDF文件创建者所定义的文件。 3 如果带有超长文件名参数的PDF文件中定义了Open/Execute a...