Critical severityNVD Advisory· Published Aug 5, 2025· Updated Apr 15, 2026

CVE-2013-10068

Description

Foxit Reader Plugin version 2.2.1.530, bundled with Foxit Reader 5.4.4.11281, contains a stack-based buffer overflow vulnerability in the npFoxitReaderPlugin.dll module. When a PDF file is loaded from a remote host, an overly long query string in the URL can overflow a buffer, allowing remote attackers to execute arbitrary code.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/browser/foxit_reader_plugin_url_bof.rbnvd
www.exploit-db.com/exploits/23944nvd
www.exploit-db.com/exploits/24502nvd
www.tenable.com/plugins/nessus/64094nvd
www.vulncheck.com/advisories/foxit-reader-plugin-url-processing-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.585
epss	0.047
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000