VYPR

PDF Editor

by Foxitsoftware

CVEs (66)

  • CVE-2024-41605HigSep 26, 2024
    risk 0.55cvss 8.4epss 0.00

    In Foxit PDF Reader before 2024.3, and PDF Editor before 2024.3 and 13.x before 13.1.4, an attacker can replace an update file with a Trojan horse via side loading, because the update service lacks integrity validation for the updater. Attacker-controlled code may thus be…

  • CVE-2026-5943HigApr 27, 2026
    risk 0.51cvss 7.8epss 0.00

    Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during…

  • CVE-2026-5941HigApr 27, 2026
    risk 0.51cvss 7.8epss 0.00

    Parsing logic flaws cause non-signature data to be misidentified as valid signatures when processing malformed form field hierarchies, leading to invalid memory writes and program crashes during internal data structure construction.

  • CVE-2026-5940HigApr 27, 2026
    risk 0.51cvss 7.8epss 0.00

    Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, leading to program crashes.

  • CVE-2026-3779HigApr 1, 2026
    risk 0.51cvss 7.8epss 0.00

    The application's list box calculate array logic keeps stale references to page or form objects after they are deleted or re-created, which allows crafted documents to trigger a use-after-free when the calculation runs and can potentially lead to arbitrary code execution.

  • CVE-2026-3775HigApr 1, 2026
    risk 0.51cvss 7.8epss 0.00

    The application's update service, when checking for updates, loads certain system libraries from a search path that includes directories writable by low‑privileged users and is not strictly restricted to trusted system locations. Because these libraries may be resolved and…

  • CVE-2026-3780HigApr 1, 2026
    risk 0.47cvss 7.3epss 0.00

    The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed…

  • CVE-2026-3778MedApr 1, 2026
    risk 0.40cvss 6.2epss 0.00

    The application does not detect or guard against cyclic PDF object references while handling JavaScript in PDF. When pages and annotations are crafted that reference each other in a loop, passing the document to APIs (e.g., SOAP) that perform deep traversal can cause…

  • CVE-2026-5942MedApr 27, 2026
    risk 0.36cvss 5.5epss 0.00

    Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program.

  • CVE-2026-5939MedApr 27, 2026
    risk 0.36cvss 5.5epss 0.00

    A crafted XFA PDF can trigger a use-after-free condition during calculate event processing, causing the application to crash and resulting in an arbitrary code execution.

  • CVE-2026-5938MedApr 27, 2026
    risk 0.36cvss 5.5epss 0.00

    Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service.

  • CVE-2026-5937MedApr 27, 2026
    risk 0.36cvss 5.5epss 0.00

    Insufficient parameter verification leads to the occurrence of format errors in files, which will trigger an unhandled "std::invalid_argument" exception, ultimately causing the program to terminate.

  • CVE-2026-3777MedApr 1, 2026
    risk 0.36cvss 5.5epss 0.00

    The application does not properly validate the lifetime and validity of internal view cache pointers after JavaScript changes the document zoom and page state. When a script modifies the zoom property and then triggers a page change, the original view object may be destroyed…

  • CVE-2026-3776MedApr 1, 2026
    risk 0.36cvss 5.5epss 0.00

    The application does not validate the presence of required appearance (AP) data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code continues to dereference the associated object without a prior null or validity…

  • CVE-2026-3774MedApr 1, 2026
    risk 0.31cvss 4.7epss 0.00

    The application allows PDF JavaScript and document/print actions (such as WillPrint/DidPrint) to update form fields, annotations, or optional content groups (OCGs) immediately before or after redaction, encryption, or printing. These script‑driven updates are not fully covered…

  • CVE-2026-1592Feb 3, 2026
    risk 0.00cvss epss 0.00

    Foxit PDF Editor Cloud (pdfonline) contains a stored cross-site scripting vulnerability in the Create New Layer feature. Unsanitized user input is embedded into the HTML output, allowing arbitrary JavaScript execution when the layer is referenced. This issue affects…

  • CVE-2026-1591Feb 3, 2026
    risk 0.00cvss epss 0.00

    Foxit PDF Editor Cloud (pdfonline) contains a stored cross-site scripting vulnerability in the file upload feature. A malicious username is embedded into the upload file list without proper escaping, allowing arbitrary JavaScript execution when the list is displayed. This issue…

  • CVE-2025-66522Dec 19, 2025
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability exists in the Digital IDs functionality of the Foxit PDF Editor Cloud (pdfonline.foxit.com). The application does not properly sanitize or encode the Common Name field of Digital IDs before inserting user-supplied content into…

  • CVE-2025-66520Dec 19, 2025
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability exists in the Portfolio feature of the Foxit PDF Editor cloud (pdfonline.foxit.com). User-supplied SVG files are not properly sanitized or validated before being inserted into the HTML structure. As a result, embedded HTML or…

  • CVE-2025-66493Dec 19, 2025
    risk 0.00cvss epss 0.00

    A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF Editor before 2025.2.1,14.0.1 and 13.2.1 on Windows . When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed…

Page 1 of 4