CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-1592

Foxit PDF Editor Cloud (pdfonline) contains a stored cross-site scripting vulnerability in the Create New Layer feature. Unsanitized user input is embedded into the HTML output, allowing arbitrary JavaScript execution when the layer is referenced. This issue affects pdfonline.foxit.com: before 2026‑02‑03.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.1%

CVSS Severity

CVSS v3 Score 6.3

References

https://www.foxit.com/support/security-bulletins.html

Products affected by CVE-2026-1592

Foxit » Pdf Editor Cloud » Version: Any

cpe:2.3:a:foxit:pdf_editor_cloud:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-1592

Products

Pricing

Contact Us