Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
podofo project vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-31568
Podofo v0.10.0 exists to contain a heap buffer overflow via the component PoDoFo::PdfEncryptRC4::PdfEncryptRC4.
Podofo Project Podofo 0.10.0
4.3
CVSSv2
CVE-2020-18972
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows malicious users to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
Podofo Project Podofo 0.9.6
4.3
CVSSv2
CVE-2018-5783
In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PoDoFo::PdfVecObjects::Reserve function (base/PdfVecObjects.h). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted pdf file.
Podofo Project Podofo 0.9.5
6.8
CVSSv2
CVE-2017-5853
Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote malicious users to have unspecified impact via a crafted file.
Podofo Project Podofo 0.9.4
NA
CVE-2023-2241
A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. Affected is the function readXRefStreamEntry of the file PdfXRefStreamParserObject.cpp. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has bee...
Podofo Project Podofo 0.10.0
4.3
CVSSv2
CVE-2018-6352
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp. Remote attackers could leverage this vulnerability to cause a denial of service through a crafted pdf file.
Podofo Project Podofo 0.9.5
4.3
CVSSv2
CVE-2017-7383
The PdfFontFactory.cpp:195:62 code in PoDoFo 0.9.5 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.
Podofo Project Podofo 0.9.5
4.3
CVSSv2
CVE-2019-10723
An issue exists in PoDoFo 0.9.6. The PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp has an attempted excessive memory allocation because nInitialSize is not validated.
Podofo Project Podofo 0.9.6
6.8
CVSSv2
CVE-2018-8000
In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. Remote attackers could leverage this vulnerability to cause a denial-of-service or potentially execute arbitrary...
Podofo Project Podofo 0.9.5
6.8
CVSSv2
CVE-2018-8001
In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibly unspecified other impact via a crafted pdf file.
Podofo Project Podofo 0.9.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »