cve/CVE-2018-19445.md at 7482ec4521a75dd13882dc1283f17009c936e974

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when the JavaScript API app.launchURL is used. An attacker can leverage this to gain remote code execution.

POC

Reference

No PoCs from references.

Github

https://github.com/0xCyberY/CVE-T4PDF
https://github.com/ARPSyndicate/cvemon

714 B Raw Blame History

CVE-2018-19445

Description

POC

Reference

Github

714 B

Raw Blame History