EUVD-2018-13340

Malware in sbrugna...

EUVD-2024-44831

Malicious code in bioql PyPI...

EUVD-2024-39288

Malicious code in bioql PyPI...

CVE-2024-50344

I, Librarian is an open-source version of a PDF managing SaaS. Supplemental Files are allowed to be viewed in the browser, only if they have a white-listed MIME type. Unfortunately, this logic is broken, thus allowing unsafe files containing Javascript to be executed with the application context...

CVE-2024-41943 I, Librarian Stored XSS vulnerability in Item Summary

I, Librarian is an open-source version of a PDF managing SaaS. PDF notes are displayed on the Item Summary page without any form of validation or sanitation. An attacker can exploit this vulnerability by inserting a payload in the PDF notes that contains malicious code or script. This code will...

Memory corruption vulnerability exists in Nitro Pro (CNVD-2021-21844)

Nitro pro is a PDF production and management software. A memory corruption vulnerability exists in Nitro Pro. An attacker could exploit this vulnerability to cause the program to crash...

Adobe Reader and Acrobat util.printf Stack Buffer Overflow (CVE-2008-2992)

The Adobe Acrobat family of products are popular PDF Portable Document Format document management tools. They can be used for viewing, creating and manipulating PDF files. These applications support third-party plug-ins, which can add extra function. Furthermore, Acrobat includes JavaScript...