Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 03/05/2024 Updated: 03/05/2024

Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the exportXFAData method. The application exposes a JavaScript interface that allows writing arbitrary files. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-19697.

福昕Foxit PDF远程代码执行漏洞CVE-2023-27363分析与复现

fuxinFoxit 福昕Foxit PDF远程代码执行漏洞CVE-2023-27363分析与复现免责声明: 本篇文章仅用于技术交流学习和研究的目的，严禁使用文章中的技术用于非法目的和破坏，否则造成一切后果与发表本文章的作者无关。中文版本: 本免责声明旨在明确指出，本文仅为技术交流、学习和研究之用，不�

CVE-2023-27363

https://www.zerodayinitiative.com/advisories/ZDI-23-491/https://www.foxit.com/support/security-bulletins.html https://nvd.nist.gov https://github.com/webraybtl/CVE-2023-27363 https://www.zerodayinitiative.com/advisories/ZDI-23-491/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-27363

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect