Unrated severityNVD Advisory· Published Feb 3, 2026· Updated Feb 4, 2026
Stored XSS via Create New Layer Field found in Foxit PDF Editor Cloud
CVE-2026-1592
Description
Foxit PDF Editor Cloud (pdfonline) contains a stored cross-site scripting vulnerability in the Create New Layer feature. Unsanitized user input is embedded into the HTML output, allowing arbitrary JavaScript execution when the layer is referenced.
This issue affects pdfonline.foxit.com: before 2026‑02‑03.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 2026-02-03
- Foxit Software Inc./pdfonline.foxit.comv5Range: before 2026‑02‑03
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.