exploitDog

GHSA-j4gm-v3h2-cv35

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.

Ссылки

EPSS

Процентиль: 5%

0.00023

Низкий

CVE ID

Связанные уязвимости

CVE-2021-38572

CVSS3: 9.8

nvd

больше 4 лет назад

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.

EPSS

Процентиль: 5%

0.00023

Низкий

CVE ID