202 matches found
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
PT-2026-29531
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
Ora Tools PDF Reader 安全漏洞
Ora Tools PDF Reader is a document reading tool developed by Ora Tools Corporation in China. It supports browsing and basic processing of PDF files. There is a security vulnerability in the APPv4.3.5 version of Ora Tools PDF Reader. This vulnerability stems from the possibility of arbitrary file...
CVE-2026-30291
CVE-2026-30291 affects Ora Tools PDF Reader/Editor (APP v4.3.5). The vulnerability allows arbitrary file overwrites through the file-import process, which can lead to arbitrary code execution or information exposure. Connected sources (Red Hat, ENISA EUVD, NVD, CVE lists) confirm the same descrip...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
CVE-2026-30291
An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...
python security update
2.7.5-94.0.3 - Fix for CVE-2025-12084 Orabug: 38902314...
firefox security update
140.4.0-4.0.1 - Update to 140.4.0 ESR Orabug: 38595697CVE-2025-11708CVE-2025-11709 CVE-2025-11710CVE-2025-11711CVE-2025-11712CVE-2025-11714 CVE-2025-11715...
Malicious code in hawkingradiation-ora-celeste-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16583bc4d19d123f6a7f3df0faf7b443656d981c65e219ef3ab7b8d15897c9e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-178876
Malicious code in fomalhaut-ora-cybernetics-publish npm...
EUVD-2025-179325
Malicious code in dependencies-taurus-dotenv-safe-ora npm...
EUVD-2025-179195
Malicious code in eigenstate-gravitationalwave-config-ora npm...
EUVD-2025-178116
Malicious code in levels-eris-ora-hydra npm...
EUVD-2025-177110
Malicious code in polaris-parcel-ora-quasar npm...
MAL-2025-187557 Malicious code in izar-ora-exec-genomics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53d17c4563e99682e42e4eae296514441c01b6f64a6c19ecde3adc967d542d2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-178231
Malicious code in jwt-sync-ora-selenium npm...
EUVD-2025-178703
Malicious code in global-docusaurus-postcss-ora npm...
EUVD-2025-177665
Malicious code in neptune-framework-cors-ora npm...
EUVD-2025-177421
Malicious code in ora-process-config-public npm...