An issue exists in Foxit Reader and PhantomPDF prior to 9.2. It allows NTLM credential theft via a GoToE or GoToR action.
foxitsoftware phantompdf
foxitsoftware reader