CVE-2024-9249

CVE-2024-9249 affects Foxit PDF Reader. It is a PDF parsing out-of-bounds read that can lead to remote code execution. The flaw arises during PDF data parsing due to insufficient validation, enabling an attacker to execute code in the process when a victim opens a crafted file or visits a malicio...

CVE-2024-9249 Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

WordPress Multi Feed Reader plugin <= 2.2.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin Multi Feed Reader versions = 2.2.4...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader, which stems from an out-of-bounds read contained in the Annotation feature, resulting in an information disclosure vulnerability...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is China Foxit Foxit company a PDF reader. A buffer error vulnerability exists in Foxit PDF Reader, which stems from the AcroForm feature that contains an out-of-bounds read, resulting in an information disclosure vulnerability. No details of the vulnerability are provided at thi...

Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. An elevation of privilege vulnerability exists in Foxit PDF Reader, which stems from not properly assigning privileges when handling configuration files, and can be exploited by an attacker to elevate...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A resource management error vulnerability exists in Foxit PDF Reader, which stems from the Annotation feature that contains a reuse-after-release, leading to an information disclosure vulnerability...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader suffers from a buffer overflow vulnerability that originates from an out-of-bounds write in the PDF file parsing function, which can be exploited by a remote attacker to cause remote code execution...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a Chinese Foxit Foxit company's a PDF reader. A resource management error vulnerability exists in Foxit PDF Reader, which stems from the AcroForm feature that contains a reuse-after-release, leading to information disclosure vulnerability. No details of the vulnerability are...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A resource management error vulnerability exists in Foxit PDF Reader, which stems from the Annotation feature that contains a reuse-after-release, leading to a remote code execution vulnerability...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A resource management error vulnerability exists in Foxit PDF Reader, which stems from the Annotation feature that contains a reuse-after-release, leading to a remote code execution vulnerability...

WordPress Multi Feed Reader Plugin <=2.2.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Multi Feed Reader Type Plugin Vulnerable versions =2.2.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-53718 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID d3cb59a47389 Credits Joshua Chan Required...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...

Foxit PDF Reader 资源管理错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A resource management error vulnerability exists in Foxit PDF Reader, which arises from manipulating AcroForms without verifying the existence of the object, which could lead to remote code execution...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader, which stems from an out-of-bounds read, resulting in an information disclosure vulnerability contained in the AcroForm feature...

XXE in PHPSpreadsheet's XLSX reader

Summary The XmlScanner class has a scan method which should prevent XXE attacks. However, we found another bypass than the previously reported CVE-2024-47873, the regexes from the findCharSet method, which is used for determining the current encoding can be bypassed by using a payload in the...

CVE-2024-48294

A NULL pointer dereference in the component libPdfCore.dll of Wondershare PDF Reader v1.0.9.2544 allows attackers to cause a Denial of Service DoS via a crafted PDF file...

CVE-2024-48294

A NULL pointer dereference in the component libPdfCore.dll of Wondershare PDF Reader v1.0.9.2544 allows attackers to cause a Denial of Service DoS via a crafted PDF file...