Lucene search
K

59102 matches found

RedhatCVE
RedhatCVE
added 2025/12/11 7:0 p.m.10 views

CVE-2025-64593

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.4AI score0.0017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/11 7:0 p.m.3 views

CVE-2025-64580

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.5AI score0.00205EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/11 6:30 p.m.6 views

EUVD-2025-202707

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. They allow potential arbitrary code execution when processing crafted PDF files. The vulnerability stems from insufficient handling of memory allocation failures after assigning an extremely...

7.8CVSS7.8AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/11 6:30 p.m.4 views

EUVD-2025-202702

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can use JavaScript to alter annotation content and subsequently clear the file's modification status via JavaScript interfaces. This circumvents digital signature verification b...

6.5CVSS7.3AI score0.0017EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/11 6:30 p.m.4 views

EUVD-2025-202708

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing...

7.8CVSS7.7AI score0.00169EPSS
Exploits0References2
NVD
NVD
added 2025/12/11 4:16 p.m.4 views

CVE-2025-55307

An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2. Opening a malicious PDF containing a crafted JavaScript call to search.query with a crafted cDIPath parameter e.g., "/" may cause an out-of-bounds read in internal path-parsing logic, potentially leadi...

3.3CVSS0.00147EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 4:16 p.m.5 views

CVE-2025-55313

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. They allow potential arbitrary code execution when processing crafted PDF files. The vulnerability stems from insufficient handling of memory allocation failures after assigning an extremely...

7.8CVSS0.00143EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 4:16 p.m.6 views

CVE-2025-55312

An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing dereferen...

7.8CVSS0.00126EPSS
Exploits0References1
OSV
OSV
added 2025/12/11 4:16 p.m.4 views

CVE-2025-55311

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can use JavaScript to alter annotation content and subsequently clear the file's modification status via JavaScript interfaces. This circumvents digital signature verification b...

6.5CVSS5.8AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 4:16 p.m.14 views

CVE-2025-55314

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing...

7.8CVSS0.00169EPSS
Exploits0References1
OSV
OSV
added 2025/12/11 4:16 p.m.7 views

CVE-2025-55314

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing...

7.8CVSS6AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 4:16 p.m.10 views

CVE-2025-55309

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can contain JavaScript that attaches an OnBlur action on a form field that destroys an annotation. During user right-click interaction, the program's internal focus change...

6.7CVSS0.00115EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 4:16 p.m.7 views

CVE-2025-55311

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can use JavaScript to alter annotation content and subsequently clear the file's modification status via JavaScript interfaces. This circumvents digital signature verification b...

6.5CVSS0.0017EPSS
Exploits0References1
OSV
OSV
added 2025/12/11 4:16 p.m.3 views

CVE-2025-55312

An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing dereferen...

7.8CVSS6.1AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/12/11 2:8 p.m.20 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS7.3AI score0.00498EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2025/12/11 2:8 p.m.5 views

firefox: thunderbird: JIT miscompilation in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the JavaScript Engine: JIT component...

7.3CVSS5.7AI score0.00292EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/12/11 2:8 p.m.3 views

firefox: thunderbird: JIT miscompilation in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the JavaScript Engine: JIT component...

9.8CVSS5.7AI score0.00481EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/11 2:8 p.m.5 views

firefox: thunderbird: JIT miscompilation in the JavaScript Engine: JIT component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: JIT miscompilation in the JavaScript Engine: JIT component...

9.8CVSS5.7AI score0.00422EPSS
Exploits0References5
Veracode
Veracode
added 2025/12/11 1:41 p.m.8 views

Cross-site Scripting (XSS)

@tiptap/extension-link is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to unsanitized user input in link-setting functionality, allowing attackers to inject javascript: URLs that execute arbitrary JavaScript when interacted with...

6.1CVSS6.7AI score0.00302EPSS
Exploits1References4Affected Software1
Malwarebytes
Malwarebytes
added 2025/12/11 11:58 a.m.9 views

[Updated] Another Chrome zero-day under attack: update now

Google issued an extra patch for a security vulnerability in Chrome that is being actively exploited, and it's urging users to update. The patch fixes three flaws in Chrome, and for one of them Google says an exploit already exists in the wild. Chrome is by far the world’s most popular browser,...

9.8CVSS7.9AI score0.22359EPSS
Exploits22
Rows per page
Query Builder