CNNVD-202512-3833 Information

CNNVD ID

CNNVD-202512-3833

Related CVE

CVE-2025-66520

• CNNVD Published: 2025-12-19

Description (Chinese)

Foxit PDF Editor是中国福昕（Foxit）公司的一款PDF编辑器。 Foxit PDF Editor存在安全漏洞，该漏洞源于Portfolio功能中用户提供的SVG文件未正确清理或验证，可能导致存储型跨站脚本攻击。

Description (English)

Foxit PDF Editor is a PDF editor for Foxit. Foxit PDF Editor had a security loophole, which stemmed from the incorrect clean-up or validation of SVG files provided by users in Portfolio, which could result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

福昕

Published

2025-12-19

Last Modified

2026-02-24

References

https://www.foxit.com/support/security-bulletins.html

Patch

https://www.foxit.com/pdf-editor/