EUVD-2022-2801

Malicious code in bioql PyPI...

LibreOffice Improper Verification of Cryptographic Signature Vulnerability (Apr 2025) - Windows

LibreOffice is prone to an improper verification of cryptographic signature vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

UBUNTU-CVE-2025-2866

Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid This...

Foxit Reader < 4.1 PDF Spoofing (macOS)

The version of Foxit Reader for Mac installed on the remote macOS host is prior to 4.1.3. It is, therefore, affected by a PDF spoofing vulnerability. An Evil Annotation Attack may deliver incorrect validation results when validating certain certified PDF files whose visible content was...

Foxit PhantomPDF < 4.1.3 PDF Spoofing (macOS)

The version of Foxit PhantomPDF for Mac installed on the remote macOS host is prior to 4.1.3. It is, therefore, affected by a PDF spoofing vulnerability. An Evil Annotation Attack may deliver incorrect validation results when validating certain certified PDF files whose visible content was...

Command injection

Github Electron version 1.6.4 - 1.6.11 and 1.7.0 - 1.7.5 is vulnerable to a URL Spoofing problem when opening PDFs in PDFium resulting loading arbitrary PDFs that a hacker can control...

CVE-2015-1278

Google Chrome up to 44.0.2403.89 is affected by CVE-2015-1278 due to content/browser/web_contents/web_contents_impl.cc not closing a PDF document's modal dialog when navigating to an interstitial page, enabling URL spoofing via a crafted PDF (alert_dialog.pdf). Remediation: upgrade to Chrome 44.0...