Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-20837
An issue exists in Foxit Reader and PhantomPDF prior to 9.5. It allows signature validation bypass via a modified file or a file with non-standard signatures.
Foxitsoftware Phantompdf
Foxitsoftware Reader
2.6
CVSSv2
CVE-2017-6883
The ConvertToPDF plugin in Foxit Reader prior to 8.2.1 and PhantomPDF prior to 8.2.1 on Windows, when the gflags app is enabled, allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image. The vulnerability could...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
6.8
CVSSv2
CVE-2020-12248
In Foxit Reader and PhantomPDF prior to 10.0.1, and PhantomPDF prior to 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is mishandled.
Foxitsoftware Phantompdf
Foxitsoftware Reader
6.8
CVSSv2
CVE-2020-13804
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.2. It allows information disclosure of a hardcoded username and password in the DocuSign plugin.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13806
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.2. It has a use-after-free because of JavaScript execution after a deletion or close operation.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13809
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.2. It allows resource consumption via long strings in the content stream.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13810
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard signatures.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13815
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.1. It allows stack consumption via a loop of an indirect object reference.
Foxitsoftware Phantompdf
Foxitsoftware Reader
6.8
CVSSv2
CVE-2018-11618
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla...
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
6.8
CVSSv2
CVE-2018-11619
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »