Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14215
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling xfa.event.rest XFA JavaScript due to accessing a wild pointer.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14207
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child and parent object (caused by an append error).
Foxitsoftware Phantompdf
8.8
CVSSv3
CVE-2018-17706
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF Phantom PDF 9.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2019-14209
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2018-21241
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2018-21238
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21242
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.
Foxitsoftware Phantompdf
6.5
CVSSv3
CVE-2018-21243
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has COM object mishandling when Microsoft Word is used.
Foxitsoftware Phantompdf
5.3
CVSSv3
CVE-2018-21237
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action.
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »