Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-27517
Foxit PDF SDK For Web up to and including 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert (in the Acrobat JavaScript API).
Foxit Phantompdf
Foxit Reader
7.8
CVSSv3
CVE-2020-8844
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit Reader 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw ...
Foxitsoftware Reader
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2020-17416
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit Reader 10.0.0.35798. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
3.3
CVSSv3
CVE-2020-15637
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The sp...
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.8
CVSSv3
CVE-2021-27267
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2021-27271
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
8.1
CVSSv3
CVE-2018-20312
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read, a different issue than CVE-2018-20310 because of a different opcode.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.1
CVSSv3
CVE-2018-20316
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read, a different issue than CVE-2018-20310 because of a different opcode.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.8
CVSSv3
CVE-2021-27261
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
3.3
CVSSv3
CVE-2021-27262
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The s...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »