Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-17706
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF Phantom PDF 9.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14208
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain portfolio that contains a null dictionary.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14210
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14211
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash due to the lack of proper validation of the existence of an object prior to performing operations on that object when executing JavaScript.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14213
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash due to the repeated release of the signature dictionary during CSG_SignatureF and CPDF_Document destruction.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14214
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a JavaScript Denial of Service when deleting pages in a document that contains only one page by calling a "t.hidden = true" function.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-14215
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling xfa.event.rest XFA JavaScript due to accessing a wild pointer.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-20813
An issue exists in Foxit PhantomPDF prior to 8.3.12. It has a NULL pointer dereference.
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-20815
An issue exists in Foxit PhantomPDF prior to 8.3.12. It allows stack consumption via nested function calls for XML parsing.
Foxitsoftware Phantompdf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »