JavaScript File Write Vulnerability in Foxit PDF Reader
CVE-2011-10030

8.4HIGH

Key Information:

Vendor

Foxit
Status
Foxit
Vendor
CVE Published:
20 August 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2011-10030?

Foxit PDF Reader versions before 4.3.1.0218 have a security flaw involving the createDataObject() JavaScript API function. This vulnerability permits untrusted PDF documents to write arbitrary files to any location on the disk. By embedding harmful PDF content that utilizes this function, an attacker could deposit executables or scripts into sensitive areas, which may lead to unauthorized code execution upon system boot or user login.

Affected Version(s)

Foxit PDF Reader * < 4.3.1.0218

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2011-10030 - Proof of Concept

CVE-2011-10030 - Proof of Concept

CVE-2011-10030 - Proof of Concept

References

https://raw.githubusercontent.com/rapid7/metasploit-frame...
exploit
https://www.exploit-db.com/exploits/16978
exploit
http://scarybeastsecurity.blogspot.com/2011/03/dangerous-...
technical-descriptionexploit

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Chris Evans
JSON
.