Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-17706
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF Phantom PDF 9.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Foxitsoftware Phantompdf
5.3
CVSSv3
CVE-2018-21237
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2018-21238
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2018-21241
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21242
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.
Foxitsoftware Phantompdf
6.5
CVSSv3
CVE-2018-21243
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has COM object mishandling when Microsoft Word is used.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21244
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20814
An issue exists in Foxit PhantomPDF prior to 8.3.12. It allows memory consumption because data is created for each page of an application level.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20815
An issue exists in Foxit PhantomPDF prior to 8.3.12. It allows stack consumption via nested function calls for XML parsing.
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »