Lucene search
+L

13 matches found

NVD
NVD
added 2026/07/08 9:16 a.m.10 views

CVE-2026-13127

The application opens the PDF file. JavaScript then rewrites the document to modify the page structure, resulting in the invalidation of the page objects. However, the thumbnails still use the invalid page objects, ultimately causing the application to crash...

7.8CVSS0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/08 7:36 a.m.39 views

CVE-2026-13127 Foxit PDF Editor/Reader Annotation Use-After-Free Remote Code Execution Vulnerability

The application opens the PDF file. JavaScript then rewrites the document to modify the page structure, resulting in the invalidation of the page objects. However, the thumbnails still use the invalid page objects, ultimately causing the application to crash...

7.8CVSS0.00116EPSS
Exploits0References1
CVE
CVE
added 2026/07/08 7:36 a.m.16 views

CVE-2026-13127

CVE-2026-13127 concerns Foxit PDF Editor/Reader annotation handling. The description states that when opening a PDF, JavaScript rewrites the document to modify page structure, causing page objects to become invalid; thumbnails still reference the invalid objects, leading to a crash. The CVSS 3.1 ...

7.8CVSS6AI score0.00116EPSS
Exploits0References1Affected Software2
EUVD
EUVD
added 2026/07/08 7:36 a.m.10 views

EUVD-2026-42186

The application opens the PDF file. JavaScript then rewrites the document to modify the page structure, resulting in the invalidation of the page objects. However, the thumbnails still use the invalid page objects, ultimately causing the application to crash...

7.8CVSS6AI score0.00116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/08 7:36 a.m.6 views

CVE-2026-13127

The application opens the PDF file. JavaScript then rewrites the document to modify the page structure, resulting in the invalidation of the page objects. However, the thumbnails still use the invalid page objects, ultimately causing the application to crash...

7.8CVSS6AI score0.00116EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2026/07/08 7:36 a.m.19 views

CVE-2026-57241

CVE-2026-57241 affects Foxit PDF Editor/Reader. The issue arises when opening a PDF where JavaScript operations on the page/document desynchronize page-related objects, yet the renderer trusts an outdated page count, leading to an out-of-bounds access and application crash. CVSSv3.1 metrics indic...

6.1CVSS6AI score0.00107EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2026/07/08 7:36 a.m.35 views

CVE-2026-57242 Foxit PDF Editor/Reader Page Use-After-Free Vulnerability

The application opens the PDF, and JavaScript modifies the form. However, the related objects on the page lack complete lifecycle management and null value validation; when the page state changes, the application continuously dereferences invalid objects, eventually leading to a crash...

7.8CVSS0.00116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/02 5:4 a.m.6 views

CVE-2026-3779

The application's list box calculate array logic keeps stale references to page or form objects after they are deleted or re-created, which allows crafted documents to trigger a use-after-free when the calculation runs and can potentially lead to arbitrary code execution...

7.8CVSS6AI score0.00309EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in bby-page-objects (npm)

The package bby-page-objects was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-15540 Malicious code in bby-page-objects (npm)

The package bby-page-objects was found to contain malicious code...

7.2AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.4 views

SUSE CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...

6.8CVSS7.6AI score0.04583EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/11/18 11:59 a.m.34 views

CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...

6.8CVSS6.2AI score0.04583EPSS
Exploits0References2
OSV
OSV
added 2014/11/18 11:59 a.m.4 views

UBUNTU-CVE-2014-4459

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document...

6.8CVSS6.2AI score0.04583EPSS
Exploits0References3
Rows per page
Query Builder