CVE-2022-30350
https://notcve.org/view.php?id=CVE-2022-30350
Avanquest Software RAD PDF (PDFEscape Online) 3.19.2.2 is vulnerable to Information Leak / Disclosure. The PDFEscape Online tool provides users with a "white out" functionality for redacting images, text, and other graphics from a PDF document. However, this mechanism does not remove underlying text or PDF object specification information from the PDF. As a result, for example, redacted text may be copy-pasted by a PDF reader. • https://arxiv.org/pdf/2206.02285.pdf https://www.pdfescape.com/open •
CVE-2020-9418
https://notcve.org/view.php?id=CVE-2020-9418
An untrusted search path vulnerability in the installer of PDFescape Desktop version 4.0.22 and earlier allows an attacker to gain privileges and execute code via DLL hijacking. Una vulnerabilidad de ruta de búsqueda no confiable en el instalador de PDFescape Desktop versión 4.0.22 y anteriores, permite a un atacante alcanzar privilegios y ejecutar código por medio del secuestro de una biblioteca DLL. • https://support.pdfescape.com/hc/en-us/articles/360039586551 • CWE-426: Untrusted Search Path •