202 matches found
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
Ora Tools PDF Reader 安全漏洞
Ora Tools PDF Reader is a document reading tool developed by Ora Tools Corporation in China. It supports browsing and basic processing of PDF files. There is a security vulnerability in the APPv4.3.5 version of Ora Tools PDF Reader. This vulnerability stems from the possibility of arbitrary file...
CVE-2026-30291
CVE-2026-30291 affects Ora Tools PDF Reader/Editor (APP v4.3.5). The vulnerability allows arbitrary file overwrites through the file-import process, which can lead to arbitrary code execution or information exposure. Connected sources (Red Hat, ENISA EUVD, NVD, CVE lists) confirm the same descrip...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
PT-2026-29531
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
python security update
2.7.5-94.0.3 - Fix for CVE-2025-12084 Orabug: 38902314...
firefox security update
140.4.0-4.0.1 - Update to 140.4.0 ESR Orabug: 38595697CVE-2025-11708CVE-2025-11709 CVE-2025-11710CVE-2025-11711CVE-2025-11712CVE-2025-11714 CVE-2025-11715...
Malicious code in hawkingradiation-ora-celeste-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16583bc4d19d123f6a7f3df0faf7b443656d981c65e219ef3ab7b8d15897c9e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179325
Malicious code in dependencies-taurus-dotenv-safe-ora npm...
EUVD-2025-178876
Malicious code in fomalhaut-ora-cybernetics-publish npm...
EUVD-2025-178189
Malicious code in kinetic-ora-bootstrap-redshift npm...
EUVD-2025-177563
Malicious code in node-sass-luna-ora-terser-webpack-plugin npm...
EUVD-2025-178116
Malicious code in levels-eris-ora-hydra npm...
EUVD-2025-177665
Malicious code in neptune-framework-cors-ora npm...
Malicious code in borealis-promise-spinner-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68c7357be2aa15b46b85c919af1456a68d791ec27c6ed54c2d089fda32b2e8e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179987
Malicious code in borealis-hercules-ora-lyra npm...
EUVD-2025-177394
Malicious code in outercore-quasarjet-ora-saturnology npm...
MAL-2025-185897 Malicious code in borealis-promise-spinner-ora (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68c7357be2aa15b46b85c919af1456a68d791ec27c6ed54c2d089fda32b2e8e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...