Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A security vulnerability exists in Foxit PDF Reader versions prior to 4.2.0.0928, which stems from not properly checking the Title entry in the PDF Information Dictionary, and could lead to the execution of arbitrary code...

Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit Foxit. A security vulnerability exists in Foxit PDF Reader versions prior to 4.3.1.0218, which stems from a JavaScript API function createDataObject that allows writing to arbitrary files, potentially resulting in code execution...

PT-2025-34111 · Undefined · Undefined

Foxit PDF Reader 4.3.1.0218 exposes a JavaScript API function, createDataObject, that allows untrusted PDF content to write arbitrary files anywhere on disk. By embedding a malicious PDF that calls this API, an attacker can drop executables or scripts into privileged folders, leading to code...

PT-2025-34127 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader versions prior to 4.2.0.0928 Description: Foxit PDF Reader does not correctly validate the /Title entry in the PDF Info dictionary. A specially crafted PDF document with an excessively long Title string can cause a fixed-size...

ALSA-2025:14130 Important: libarchive security update

The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such as python-libarchive, and several popular desktop file...

Foxit PDF Editor < 2025.2 Multiple Vulnerabilities

According to its version, the Foxit PDF Editor application previously named Foxit PhantomPDF installed on the remote Windows host is prior to 2025.2. It is, therefore affected by multiple vulnerabilities: - A memory corruption vulnerability exists in Foxit Reader 2025.1.0.27937 due to the use of ...

📄 liblcf 0.8.1 Integer Overflow

A crafted RPG Maker save file .lsd can trigger an integer overflow in liblcf’s lcfstrings compressed integer decoding logic LcfReader::ReadInt, resulting in an unbounded shift and accumulation loop. The overflowed value is later used in buffer size allocations and structure parsing, causing large...

Linux Distros Unpatched Vulnerability : CVE-2023-35958

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst...

Linux Distros Unpatched Vulnerability : CVE-2021-27919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service panic upon attempted use of the Reader.Open API for a ZIP archive in which...

Linux Distros Unpatched Vulnerability : CVE-2021-41772

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Go before 1.16.10 and 1.17.x before 1.17.3 allows an archive/zip Reader.Open panic via a crafted ZIP archive containing an invalid name or an empty filename...

Linux Distros Unpatched Vulnerability : CVE-2023-53161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic. CVE-2023-53161 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2021-37819

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf/PdfReader.java. CVE-2021-37819 Note that Nessus relies on the...

CVE-2025-32451

A memory corruption vulnerability exists in Foxit Reader 2025.1.0.27937 due to the use of an uninitialized pointer. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An...

Malicious code in activity-reader (npm)

The package activity-reader was found to contain malicious code...

Malicious code in angular-leveled-reader (npm)

The package angular-leveled-reader was found to contain malicious code...

Malicious code in norrin-statserver-reader (npm)

The package norrin-statserver-reader was found to contain malicious code...

Malicious code in react-promethion-eeprom-reader (npm)

The package react-promethion-eeprom-reader was found to contain malicious code...

MAL-2025-14529 Malicious code in angular-leveled-reader (npm)

The package angular-leveled-reader was found to contain malicious code...

MAL-2025-14056 Malicious code in activity-reader (npm)

The package activity-reader was found to contain malicious code...

MAL-2025-27726 Malicious code in norrin-statserver-reader (npm)

The package norrin-statserver-reader was found to contain malicious code...