Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

984 matches found

NVD
NVDadded 2019/03/21 4:1 p.m.19 views

CVE-2019-6730

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the popUpMenu metho...

8.8CVSS8.8AI score0.0415EPSS
Exploits0References2
Prion
Prionadded 2019/03/21 4:1 p.m.19 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the popUpMenu metho...

6.8CVSS8.8AI score0.0415EPSS
Exploits0References2Affected Software2
Zero Day Initiative
Zero Day Initiativeadded 2019/03/12 12:0 a.m.43 views

Microsoft Windows Deployment Services TFTP Server Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within WDSTFTP during TFTP read requests. The issue results from the lack of validating the...

9.8CVSS2.5AI score0.34209EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/02/12 12:0 a.m.37 views

Microsoft Access Database Engine ACEEXCL Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Access Database Engine. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when...

7.8CVSS2.7AI score0.14817EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/02/12 12:0 a.m.27 views

Adobe Acrobat Pro DC HTML2PDF HTML Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS3AI score0.03915EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/02/12 12:0 a.m.25 views

Adobe Acrobat Pro DC PostScript File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS1.3AI score0.0401EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/02/08 12:0 a.m.21 views

OMRON CX-Supervisor SCS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-Supervisor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processi...

7.8CVSS3.4AI score0.02395EPSS
Exploits0References1
Veracode
Veracodeadded 2019/02/04 4:16 a.m.23 views

Prototype Pollution

just-extend is vulnerable to prototype pollution. An attacker is able to inject arbitrary properties into Object.prototype to add or modify existing properties due to a lack of object validation...

9.8CVSS9.2AI score0.01836EPSS
Exploits1References3Affected Software1
Veracode
Veracodeadded 2019/02/04 1:17 a.m.20 views

Prototype Pollution

node.extend is vulnerable to prototype pollution attacks. An attacker is able to inject arbitrary properties into Object.prototype to add or modify properties due to a lack of object validation...

9.8CVSS9.1AI score0.01719EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2019/01/25 12:0 a.m.4 views

PT-2019-18290 · Foxit · Foxit Reader

Name of the Vulnerable Software and Affected Versions: Foxit Reader affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious...

8.8CVSS8.8AI score0.0415EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiativeadded 2019/01/25 12:0 a.m.22 views

Foxit Reader popUpMenu Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the popUpMenu metho...

7.8CVSS2.2AI score0.0415EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/01/25 12:0 a.m.25 views

Foxit Reader XFA removeInstance Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

3.3CVSS1.1AI score0.0415EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/01/25 12:0 a.m.39 views

Apple Safari CSSFontFace Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

8.8CVSS1.5AI score0.01799EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/01/25 12:0 a.m.25 views

Apple Safari RenderBlockFlow Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

8.8CVSS2.9AI score0.0179EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2019/01/25 12:0 a.m.22 views

Foxit Reader XFA remerge Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA remerge...

7.8CVSS2.6AI score0.0415EPSS
Exploits0References1
NVD
NVDadded 2019/01/24 4:29 a.m.22 views

CVE-2018-17698

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.03855EPSS
Exploits0References2
OSV
OSVadded 2019/01/24 4:29 a.m.1 views

CVE-2018-17704

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.2AI score0.03855EPSS
Exploits0References2
NVD
NVDadded 2019/01/24 4:29 a.m.25 views

CVE-2018-17694

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.7AI score0.03855EPSS
Exploits2References2
NVD
NVDadded 2019/01/24 4:29 a.m.24 views

CVE-2018-17695

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.03855EPSS
Exploits0References2
NVD
NVDadded 2019/01/24 4:29 a.m.16 views

CVE-2018-17696

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.03855EPSS
Exploits0References2
Rows per page
Query Builder