Latest foxitsoftware phantompdf Vulnerabilities

CVE-2021-38574
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38571
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<10.1.4
Microsoft Windows
CVE-2021-38573
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38572
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38568
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38570
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38569
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33793
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33794
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33792
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write via a crafted /Size key in the Trailer dictionary.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33795
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures because the certificate name, document owner, and signature author are mishandled.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-31476
Foxit PhantomPDF XFA Template Type Confusion Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31473
Foxit Reader browseForDoc Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31461
Foxit Reader app.media Type Confusion Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31459
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31458
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31460
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the targ...
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
CVE-2021-31446
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that ...
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31445
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31449
Foxit Reader U3D File Parsing Double Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31443
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31455
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31456
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
CVE-2021-31453
Foxit Reader XFA relayout Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31444
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31441
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31454
Foxit Reader XFA leadDigits Heap-based Buffer Overflow Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31442
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31452
Foxit Reader XFA Form Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31457
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31451
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31448
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31450
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31447
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-27267
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27271
Foxit PhantomPDF U3DBrowser Out-Of-Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27270
Foxit PhantomPDF JPEG2000 Parsing Out-Of Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27266
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27269
Foxit PhantomPDF U3DBrowser U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27268
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27261
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27264
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27265
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27262
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27263
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2020-27860
Foxit Reader XFA Template Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=9.7.4.29600
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.0.37527
Microsoft Windows
Foxit Reader
CVE-2018-18688
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, an Incremental Saving vulnerability exis...
Code-industry Master Pdf Editor=5.1.12
Code-industry Master Pdf Editor=5.1.68
Foxitsoftware Foxit Reader=9.4
Foxitsoftware Phantompdf>=9.0<9.4
Foxitsoftware Phantompdf=8.3.9
Gonitro Nitro Pro=11.0.3.173
and 26 more
CVE-2018-20315
Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf<8.3.10
Foxitsoftware Phantompdf>=9.0<9.5
Foxitsoftware Reader<9.5
CVE-2018-20314
Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyCheckLicence race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf<8.3.10
Foxitsoftware Phantompdf>=9.0<9.5
Foxitsoftware Reader<9.5
CVE-2018-20316
Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read, a different issue th...
Foxitsoftware Phantompdf<8.3.10
Foxitsoftware Phantompdf>=9.0<9.5
Foxitsoftware Reader<9.5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203