Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

OSV
OSVadded 2025/04/11 12:15 a.m.1 views

DEBIAN-CVE-2025-32807

A path traversal vulnerability in FusionDirectory before 1.5 allows remote attackers to read arbitrary files on the host that end with .png and .svg or .xpm for some configurations via the icon parameter of a GET request to geticon.php...

5.3CVSS5.7AI score0.00327EPSS
Exploits0References1
OSV
OSVadded 2025/04/11 12:15 a.m.0 views

UBUNTU-CVE-2025-32807

A path traversal vulnerability in FusionDirectory before 1.5 allows remote attackers to read arbitrary files on the host that end with .png and .svg or .xpm for some configurations via the icon parameter of a GET request to geticon.php...

5.3CVSS6AI score0.00327EPSS
Exploits0References5
CVE
CVEadded 2024/05/21 12:17 p.m.52 views

CVE-2024-35361

CVE-2024-35361 affects MTab Bookmark v1.9.5. A SQL injection vulnerability exists in the /LinkStore/getIcon API endpoint that allows an attacker to execute arbitrary SQL statements without any user privileges. The issue is documented across multiple sources (NVD/Red Hat/CVE records) and is rated ...

9.8CVSS8.4AI score0.00062EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/05/21 12:0 a.m.2 views

PT-2024-26460 · Unknown · Mtab Bookmark

Name of the Vulnerable Software and Affected Versions: MTab Bookmark version 1.9.5 Description: The issue is related to an SQL injection vulnerability in the /LinkStore/getIcon API endpoint. An attacker can execute arbitrary SQL statements through this vulnerability without requiring any user...

9.8CVSS8AI score0.00062EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 6:4 a.m.1 views

SUSE CVE-2009-0927

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658...

9.3CVSS8.3AI score0.93794EPSS
Exploits14References5
CNVD
CNVDadded 2018/08/01 12:0 a.m.1 views

Foxit Reader Type Obfuscation Remote Code Execution Vulnerability (CNVD-2018-14478)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

8.8CVSS8.9AI score0.0025EPSS
Exploits0References1
OSV
OSVadded 2018/07/31 8:29 p.m.0 views

CVE-2018-14253

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.2AI score
Exploits0References2
Prion
Prionadded 2018/07/31 8:29 p.m.14 views

Type confusion

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS8.8AI score0.0025EPSS
Exploits0References2Affected Software2
Cvelist
Cvelistadded 2018/07/31 8:0 p.m.17 views

CVE-2018-14253

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8AI score0.0025EPSS
Exploits0References2
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.39 views

Adobe Acrobat/Reader < 7.1.1/8.1.3/9.1 - Collab getIcon Universal Exploit

No description provided by source. !/usr/bin/env python Acrobat Reader - Collab getIcon universal exploiter evilpdf.py, tested on Operating Systems: Windows XP SP3 English/French Windows 2003 SP2 English with Application versions: Adobe Reader 9.0.0/8.1.2 English/French Test methods: Standalone...

9.3CVSS0.1AI score0.93794EPSS
Exploits14
securityvulns
securityvulnsadded 2009/09/04 12:0 a.m.75 views

Adobe Acrobat and Reader Collab &#39;getIcon&#40;&#41;&#39; JavaScript Method Exploit and Report &#40;CVE-2009-0927&#41;

Hi everyone, I published some work I did concerning the adobe reader Collab.getIcon buffer overflow. You can find the package exploit/report/payload on: http://www.coromputer.net/CVE-2009-0927package.zip Cheers, Ivan Rodriguez Almuina kralor - HiC && Crpt...

9.3CVSS1.3AI score0.93794EPSS
Exploits14
seebug.org
seebug.orgadded 2009/09/04 12:0 a.m.51 views

Adobe Acrobat/Reader &lt; 7.1.1/8.1.3/9.1 Collab getIcon Universal Exploit

No description provided by source. !/usr/bin/env python Acrobat Reader - Collab getIcon universal exploiter evilpdf.py, tested on Operating Systems: Windows XP SP3 English/French Windows 2003 SP2 English with Application versions: Adobe Reader 9.0.0/8.1.2 English/French Test methods: Standalone...

9.3CVSS0.1AI score0.93794EPSS
Exploits14
securityvulns
securityvulnsadded 2009/09/04 12:0 a.m.51 views

Adobe Acrobat / Reader code execution

Vulnerability is used in-the-wild for hidden malware installations. Recomendations are to disable PDF displaying inside browser and Javascript in PDF documents. Buffer overflow in JBIG2 decoding, buffer overflow in getIcon javascript function...

9.3CVSS2.5AI score0.93794EPSS
Exploits23References12Affected Software2
0day.today
0day.todayadded 2009/09/03 12:0 a.m.32 views

Adobe Acrobat/Reader < 7.1.1/8.1.3/9.1 Collab getIcon Universal Exploit

Exploit for unknown platform in category local exploits ======================================================================= Adobe Acrobat/Reader 7.1.1/8.1.3/9.1 Collab getIcon Universal Exploit ======================================================================= !/usr/bin/env python Acroba...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2009/09/03 12:0 a.m.126 views

Adobe Acrobat/Reader &lt; 7.1.1/8.1.3/9.1 - Collab getIcon Universal

!/usr/bin/env python Acrobat Reader - Collab getIcon universal exploiter evilpdf.py, tested on Operating Systems: Windows XP SP3 English/French Windows 2003 SP2 English with Application versions: Adobe Reader 9.0.0/8.1.2 English/French Test methods: Standalone PDF, embedded PDF in Firefox 3.0.13...

9.3CVSS7.7AI score0.93794EPSS
Exploits14
exploitpack
exploitpackadded 2009/09/03 12:0 a.m.36 views

Adobe AcrobatReader 7.1.18.1.39.1 - Collab getIcon Universal

Adobe AcrobatReader 7.1.18.1.39.1 - Collab getIcon Universal !/usr/bin/env python Acrobat Reader - Collab getIcon universal exploiter evilpdf.py, tested on Operating Systems: Windows XP SP3 English/French Windows 2003 SP2 English with Application versions: Adobe Reader 9.0.0/8.1.2 English/French...

9.3CVSS0.2AI score0.93794EPSS
Exploits14
Saint
Saintadded 2009/03/27 12:0 a.m.43 views

Adobe Acrobat JavaScript getIcon method buffer overflow

Added: 03/27/2009 CVE: CVE-2009-0927 BID: 34169 Background Adobe Acrobat is software for creating PDF documents. Adobe Reader is free software for viewing PDF documents. Problem A buffer overflow vulnerability allows command execution when a user opens a PDF file which calls the JavaScript getIco...

9.3CVSS8.8AI score0.93794EPSS
Exploits14
seebug.org
seebug.orgadded 2009/03/25 12:0 a.m.10 views

Adobe Acrobat和Reader Collab getIcon() JavaScript方式栈溢出漏洞

No description provided by source...

7.1AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2009/03/19 12:0 a.m.135 views

CVE-2009-0927

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658. Recent assessments:...

9.3CVSS8.1AI score0.93794EPSS
In wildExploits21References19
RedHat Linux
RedHat Linuxadded 2008/11/12 5:26 p.m.1 views

security flaw

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658...

9.3CVSS8AI score0.93794EPSS
Exploits21References5
Rows per page
Query Builder