Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-21244
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.
Foxitsoftware Phantompdf
445
VMScore
CVE-2018-21237
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action.
Foxitsoftware Phantompdf
392
VMScore
CVE-2018-21241
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-14214
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a JavaScript Denial of Service when deleting pages in a document that contains only one page by calling a "t.hidden = true" function.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-20815
An issue exists in Foxit PhantomPDF prior to 8.3.12. It allows stack consumption via nested function calls for XML parsing.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-20816
An issue exists in Foxit PhantomPDF prior to 8.3.12. It has a NULL pointer dereference during the parsing of file data.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-20821
An issue exists in Foxit PhantomPDF Mac prior to 3.4. It has a NULL pointer dereference.
Foxitsoftware Phantompdf
445
VMScore
CVE-2019-20823
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs.
Foxitsoftware Phantompdf
383
VMScore
CVE-2019-20832
An issue exists in Foxit PhantomPDF prior to 8.3.10. It has homograph mishandling.
Foxitsoftware Phantompdf
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »