CVE-2025-14416

Name of the Vulnerable Software and Affected Versions pdfforge PDF Architect (affected versions not specified)

Description This issue allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required, specifically the target must visit a malicious page or open a malicious file. The flaw resides in the processing of DOC files, where dangerous script execution occurs without adequate user warning. An attacker can leverage this to execute code with the privileges of the current user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.