Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-21240
An issue exists in Foxit Reader and PhantomPDF prior to 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.
Foxitsoftware Phantompdf
Foxitsoftware Reader
9.8
CVSSv3
CVE-2018-21242
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.
Foxitsoftware Phantompdf
6.5
CVSSv3
CVE-2018-21243
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has COM object mishandling when Microsoft Word is used.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21244
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20823
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20824
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20826
An issue exists in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac prior to 3.3. It has a NULL pointer dereference.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv3
CVE-2019-20833
An issue exists in Foxit PhantomPDF prior to 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20836
An issue exists in Foxit Reader and PhantomPDF prior to 9.5. It has mishandling of cloud credentials, as demonstrated by Google Drive.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5.3
CVSSv3
CVE-2018-21239
An issue exists in Foxit Reader and PhantomPDF prior to 9.2. It allows NTLM credential theft via a GoToE or GoToR action.
Foxitsoftware Phantompdf
Foxitsoftware Reader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »