CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Foxit: >> Esign Security Vulnerabilities

CVE-2025-66523

URL parameters are directly embedded into JavaScript code or HTML attributes without proper encoding or sanitization. This allows attackers to inject arbitrary scripts when an authenticated user visits a crafted link. This issue affects na1.foxitesign.foxit.com: before 2026‑01‑16.

CVSS Score

6.1

EPSS Score

0.0

Published

2026-01-20

Page 1

Vulnerabilities

Vulnerable Software

Foxit: >> Esign Security Vulnerabilities

Products

Pricing

Contact Us