#xss

[ follow ]
#pdf-security #ssrf #remote-code-execution #adobe-security #cve #coldfusion #patch-tuesday
Information security
fromSecurityWeek
2 weeks ago

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Critical and high-severity vulnerabilities were found in Apryse and Foxit PDF platforms that could enable account takeover, data exfiltration, and remote code execution.
Information security
fromZero Day Initiative
3 months ago

Zero Day Initiative - The December 2025 Security Update Review

Adobe released five bulletins addressing 139 CVEs—mostly XSS in Experience Manager—with Critical DOM-based XSS and a priority-1 ColdFusion fix; Microsoft released 56 Windows CVEs.
[ Load more ]