Security Advisory

CVE-2025-51966

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-02 00:00:00

Last updated 2025-09-02 19:44:07

Assigner mitre

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability exists in the PDF preview functionality of uTools thru 7.1.1. When a user previews a specially crafted PDF file, embedded JavaScript code executes within the applications privileged context, potentially allowing attackers to steal sensitive data or perform unauthorized actions.

← Browse all CVEs View on cve.org ↗