A vulnerability was found in Foxit Reader and PhantomPDF up to 10.1.3 (Document Reader Software) and classified as critical. Affected by this issue is the function CombineFiles of the component Pathname Handler. Upgrading to version 10.1.4 eliminates this vulnerability.
Foxit Reader/PhantomPDF up to 10.1.3 Pathname CombineFiles Remote Code Execution
- Virtual Patching
- August 12, 2021
- 8:04 am
- Virtual Patching
- August 12, 2021
- 8:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2023-33553 : PLANET WDRT-1800AX 1.01-CP2 COOKIE LOGINSTATUS IMPROPER AUTHENTICATION
Description An issue in Planet Technologies WDRT-1800AX v1.01-CP21 allows attackers to bypass authentication and escalate privileges to root via manipulation
CVE-2023-20887 : VMWARE ARIA OPERATIONS FOR NETWORKS 6.X COMMAND INJECTION
Description Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations
CVE-2023-29632 : JMSPAGEBUILDER 3.X ON PRESTASHOP AJAX_JMSPAGEBUILDER.PHP SQL INJECTION
Description PrestaShop jmspagebuilder 3.x is vulnerable to SQL Injection via ajax_jmspagebuilder.php. References https://friends-of-presta.github.io/security-advisories/modules/2023/03/13/jmspagebuilder.html For More Information MITRE