https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 07 Jun 2026 09:35:27 +0000 https://vulnerability.circl.lu/sighting/93e3c322-559b-433c-b037-a350497173f9/export {"uuid": "93e3c322-559b-433c-b037-a350497173f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28744", "type": "seen", "source": "https://t.me/cibsecurity/67010", "content": "\u203c CVE-2023-28744 \u203c\n\nA use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.1.1.15289. A specially crafted PDF document can trigger the reuse of previously freed memory by manipulating form fields of a specific type. This can lead to memory corruption and arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-19T18:21:55.000000Z"} {"uuid": "93e3c322-559b-433c-b037-a350497173f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28744", "type": "seen", "source": "https://t.me/cibsecurity/67010", "content": "\u203c CVE-2023-28744 \u203c\n\nA use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.1.1.15289. A specially crafted PDF document can trigger the reuse of previously freed memory by manipulating form fields of a specific type. This can lead to memory corruption and arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-19T18:21:55.000000Z"} https://vulnerability.circl.lu/sighting/93e3c322-559b-433c-b037-a350497173f9/export Wed, 19 Jul 2023 18:21:55 +0000 https://vulnerability.circl.lu/sighting/d58e0173-4227-4c42-8ec0-10ff8c80e9d0/export {"uuid": "d58e0173-4227-4c42-8ec0-10ff8c80e9d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28744", "type": "seen", "source": "https://t.me/arpsyndicate/2439", "content": "#ExploitObserverAlert\n\nCVE-2023-28744\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-28744. A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.1.1.15289. A specially crafted PDF document can trigger the reuse of previously freed memory by manipulating form fields of a specific type. This can lead to memory corruption and arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.\n\nFIRST-EPSS: 0.002380000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2024-01-04T05:57:58.000000Z"} {"uuid": "d58e0173-4227-4c42-8ec0-10ff8c80e9d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28744", "type": "seen", "source": "https://t.me/arpsyndicate/2439", "content": "#ExploitObserverAlert\n\nCVE-2023-28744\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-28744. A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.1.1.15289. A specially crafted PDF document can trigger the reuse of previously freed memory by manipulating form fields of a specific type. This can lead to memory corruption and arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.\n\nFIRST-EPSS: 0.002380000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2024-01-04T05:57:58.000000Z"} https://vulnerability.circl.lu/sighting/d58e0173-4227-4c42-8ec0-10ff8c80e9d0/export Thu, 04 Jan 2024 05:57:58 +0000