Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Phantompdf
(Foxitsoftware)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 549 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-04-22 | CVE-2020-10913 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the OCRAndExportToExcel command of the communication API. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An... | Foxit_reader, Phantompdf | N/A | ||
| 2020-06-04 | CVE-2018-21243 | An issue was discovered in Foxit PhantomPDF before 8.3.6. It has COM object mishandling when Microsoft Word is used. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2019-20834 | An issue was discovered in Foxit PhantomPDF before 8.3.10. It allows signature validation bypass via a modified file or a file with non-standard signatures. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2019-20832 | An issue was discovered in Foxit PhantomPDF before 8.3.10. It has homograph mishandling. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2019-20827 | An issue was discovered in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac before 3.3. It allows stack consumption because of interaction between ICC-Based color space and Alternate color space. | Phantompdf, Reader | N/A | ||
| 2020-06-04 | CVE-2019-20826 | An issue was discovered in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac before 3.3. It has a NULL pointer dereference. | Phantompdf, Reader | N/A | ||
| 2020-06-04 | CVE-2019-20825 | An issue was discovered in Foxit PhantomPDF before 8.3.11. It has an out-of-bounds write when Internet Explorer is used. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2019-20824 | An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2019-20823 | An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs. | Phantompdf | N/A | ||
| 2020-06-04 | CVE-2018-21244 | An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029. | Phantompdf | N/A |