What is the official website of Foxit ?

The official website of Foxit is https://www.foxit.com.

What is Foxit's cybersecurity risk score?

Foxit has an AI-generated cybersecurity risk score of 601 out of 1000, indicating a Poor security posture according to Rankiteo's assessment.

How many security incidents has Foxit experienced?

According to Rankiteo, Foxit currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Foxit been affected by any supply chain cyber incidents ?

According to Rankiteo, Foxit has been affected by a supply chain cyber incident involving OpenClaw, with the incident ID TP-HIKFOXGOOREVARITHEOPECIS1770645410.

Does Foxit have SOC 2 Type 1 certification ?

According to Rankiteo, Foxit is not certified under SOC 2 Type 1.

Does Foxit have SOC 2 Type 2 certification ?

According to Rankiteo, Foxit does not hold a SOC 2 Type 2 certification.

Does Foxit comply with GDPR ?

According to Rankiteo, Foxit is not listed as GDPR compliant.

Does Foxit have PCI DSS certification ?

According to Rankiteo, Foxit does not currently maintain PCI DSS compliance.

Does Foxit comply with HIPAA ?

According to Rankiteo, Foxit is not compliant with HIPAA regulations.

Does Foxit have ISO 27001 certification ?

According to Rankiteo,Foxit is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Foxit operate in ?

Foxit operates primarily in the Software Development industry.

How many employees does Foxit have ?

Foxit employs approximately 559 people worldwide.

Does Foxit own any subsidiaries ?

Foxit presently has no subsidiaries across any sectors.

How many LinkedIn followers does Foxit have ?

Foxit's official LinkedIn profile has approximately 52,049 followers.

What is the NAICS classification code for Foxit ?

Foxit is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Foxit have a Crunchbase profile ?

No, Foxit does not have a profile on Crunchbase.

Does Foxit have a LinkedIn profile ?

Yes, Foxit maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/foxit-corporation.

How many cybersecurity incidents has Foxit experienced ?

As of June 21, 2026, Rankiteo reports that Foxit has experienced 4 cybersecurity incidents.

How many peer or competitor companies does Foxit have ?

Foxit has an estimated 30,139 peer or competitor companies worldwide.

What types of cybersecurity incidents has Foxit faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach, Vulnerability and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Foxit

Boost Score +25 with badge (5 left)

601

/1000

Poor

626

/1000

Poor

Foxit Vendor Cyber Rating & Cyber Score

foxit.com

Add Your Compliance Badge

Founded in 2001, Foxit is a leading provider of innovative PDF and eSignature products and services, helping knowledge workers increase productivity and do more with documents. Foxit combines easy-to-use desktop software, mobile apps, and cloud services in one powerful solution: The Foxit PDF Editor Suite. This Intelligent Document Platform allows users to create, edit, fill, and sign documents through their integrated PDF Editor and eSign offerings – from anywhere and on any device. Foxit also enables software developers to incorporate innovative PDF technology into their applications via powerful, multi-platform Software Developer Kits (SDK). Winner of numerous awards, Foxit has over 700 million users and has sold to over 485,000

Foxit A.I CyberSecurity Scoring

Scoring History

Foxit

Foxit CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Foxit

Vulnerability

2/2026

FOX1770167007

Foxit

Cyber Attack

11/2025

OpenClaw

TP-HIKFOXGOOREV...

Foxit

Breach

9/2019

FOX218080425

Foxit

Breach

12/2017

FOX215926223

Loading…

A.I.

Foxit Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Foxit

Incidents vs Software Development Industry Avg (This Year)

Foxit has 4.76% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

Foxit has 5.66% fewer incidents than the average of all companies with at least one recorded incident.

Incident Types Foxit vs Software Development Industry Avg (This Year)

Foxit reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 1 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.

Incident History - Foxit (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Foxit Subsidiaries

Foxit

Software Development

Website: https://www.foxit.com

Company Size: 501-1,000 employees

Foxit Developer SolutionsSoftware Development

Loading…

Foxit Similar Companies

Wolt

wolt.com

Wolt is a Helsinki-based technology company with a mission to bring joy, simplicity and earnings to the neighborhoods of the world. Wolt develops a local commerce platform that connects people looking to order food, groceries, and other goods with people interested in selling and delivering them. Wolt was founded in 2014 and joined forces with DoorDash (NASDAQ: DASH) in 2022. Together, we operate in more than 30 countries today.

Alibaba Group

alibabagroup.com

🌍Alibaba Group is on a mission to make it easy to do business anywhere! Guided by our passion and imagination, we’re leading the way in AI, cloud computing and e-commerce. We aim to build the future infrastructure of commerce, and we aspire to be a good company that lasts for 102 years.

Dassault Systèmes

3ds.com

Dassault Systèmes is a catalyst for human progress. Since 1981, the company has pioneered virtual worlds to improve real life for consumers, patients and citizens. With Dassault Systèmes’ 3DEXPERIENCE platform, 370,000 customers of all sizes, in all industries, can collaborate, imagine and create sustainable innovations that drive meaningful impact. For more information, visit: https://www.3ds.com

Zoho

zoho.com

Zoho offers beautifully smart software to help you grow your business. With over 100 million users worldwide, Zoho's 55+ products aid your sales and marketing, support and collaboration, finance, and recruitment needs—letting you focus only on your business. Zoho respects user privacy and does not have an ad-revenue model in any part of its business, including its free products. Zoho Corporation is privately held and profitable, with its headquarters in Chennai, India, and offices across the globe.

Databricks

databricks.com

Databricks is the Data and AI company. More than 20,000 organizations worldwide — including adidas, AT&T, Bayer, Block, Mastercard, Rivian, Unilever, and over 60% of the Fortune 500 — rely on Databricks to build and scale data and AI apps, analytics and agents. Headquartered in San Francisco with 30+ offices around the globe, Databricks offers a unified Data Intelligence Platform that includes Agent Bricks, Lakeflow, Lakehouse, Lakebase and Unity Catalog. --- Databricks applicants Please apply through our official Careers page at databricks.com/company/careers. All official communication from Databricks will come from email addresses ending with @databricks.com or @goodtime.io (our meeting tool).

Bolt

cb bolt.eu

At Bolt, we're building a future where people don’t need to own personal cars to move around safely and conveniently. A future where people have the freedom to use transport on demand, choosing whatever vehicle's best for each occasion — be it a car, scooter, or e-bike. We're helping over 200 million customers move around in more than 600 cities globally while also supporting more than 4.5 million drivers and couriers to earn a living. The best bit? We're only just getting started. Read more at bolt.eu

GlobalLogic

globallogic.com

GlobalLogic, a Hitachi Group company, is a trusted partner in design, data, and digital engineering for the world’s largest and most innovative companies. Since our inception in 2000, we have been at the forefront of the digital revolution, helping to create some of the most widely used digital products and experiences. Our purpose is to positively impact society and the planet through cutting-edge technology. Together with our clients, we are engineering impact through intelligent products, platforms, and services that are designed for desirability, engineered for excellence, and curated for intelligence. Our people-first culture fosters shoulder-to-shoulder teamwork, supported by a unique lab model and flexible delivery options, including onshore, nearshore, and offshore solutions. We also prioritize environmental stewardship in our product development and are committed to leveraging the diversity of thoughts as a driver for business innovation, attracting and developing talent, and sustainable growth. We are proud of our global recognitions: Leader in the ISG Provider Lens™ Digital Engineering Services 2024 U.S. report Everest Group's Software Product Engineering Services Peak Matrix 2024 Star Performer in Major Contender in Everest Group’s Trust & Safety Peak Matrix 2024 2024 EcoVadis Silver Sustainability Rating Join us as we continue to shape the future of digital engineering and create lasting impacts for businesses and communities worldwide: globallogic.com

ServiceNow

servicenow.com

ServiceNow (NYSE: NOW) makes the world work better for everyone. Our cloud-based platform and solutions help digitize and unify organizations so that they can find smarter, faster, better ways to make work flow. So employees and customers can be more connected, more innovative, and more agile. And we can all create the future we imagine. The world works with ServiceNow. For more information, visit www.servicenow.com.

Snowflake

snowflake.com

Snowflake delivers the AI Data Cloud — a global network where thousands of organizations mobilize data with near-unlimited scale, concurrency, and performance. Inside the AI Data Cloud, organizations unite their siloed data, easily discover and securely share governed data, and execute diverse analytic workloads. Wherever data or users live, Snowflake delivers a single and seamless experience across multiple public clouds. Snowflake’s platform is the engine that powers and provides access to the AI Data Cloud, creating a solution for data warehousing, data lakes, data engineering, data science, data application development, and data sharing. Join Snowflake customers, partners, and data providers already taking their businesses to new frontiers in the AI Data Cloud.

Loading…

NEWS

Foxit CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 23, 2026 08:00 AM

Multiple Zero-Day Flaws in PDF Platforms Enable XSS and One-Click Attacks

16 zero-day security flaws found in Foxit and Apryse PDF platforms could lead to account takeover and RCE. Learn how AI identified these...

Read Article

February 19, 2026 08:00 AM

ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week's threat...

Read Article

February 18, 2026 08:00 AM

16 Zero-Day Vulnerabilities in Popular PDF Platforms Enable Code Execution and Data Exfiltration

16 zero-day vulnerabilities, including critical OS Command Injection, DOM-based XSS, SSRF, and Path Traversal flaws across Apryse WebViewer...

Read Article

February 11, 2026 08:00 AM

Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms

Patch Tuesday delivers fixes for 59 Microsoft flaws, six exploited zero-days, plus critical SAP and Intel TDX vulnerabilities.

Read Article

February 03, 2026 08:00 AM

Foxit PDF Editor Vulnerability Allows Attackers to Execute Arbitrary JavaScript

Foxit Software has patched critical cross-site scripting (XSS) vulnerabilities affecting Foxit PDF Editor Cloud and Foxit eSign,...

Read Article

February 03, 2026 08:00 AM

Foxit PDF Editor Vulnerabilities Let Attackers Execute Arbitrary JavaScript

Foxit PDF Editor Cloud patches XSS flaws in File Attachments and Layers, preventing attackers from executing JavaScript in users' browsers.

Read Article

December 04, 2025 08:00 AM

Threat Actors Exploit Foxit PDF Reader to Seize System Access and Steal Data

A sophisticated malware campaign is leveraging a weaponized Foxit PDF Reader to target job seekers through email-based attacks,...

Read Article

October 29, 2025 07:00 AM

Foxit Authorized as a CVE Numbering Authority (CNA)

CNA authorization empowers Foxit to assign official CVE IDs, advancing transparency and efficiency in vulnerability disclosure.

Read Article

September 23, 2025 07:00 AM

WARNING: Critical SolarWinds Web Help Desk Vulnerability Enables Privilege Escalation

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56355

SUMMARY

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 3.7)

cvss3

Base Score: 3.7

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.2

REFERENCES

CVE-2026-56347

SUMMARY

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encoding of icon classes, URLs, and text labels. Attackers can inject malicious JavaScript through unescaped menu item fields that execute for all site visitors, potentially stealing session cookies or performing unauthorized actions.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.1)

cvss3

Base Score: 6.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.7

Exploitability

2.8

REFERENCES

CVE-2026-56346

SUMMARY

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated users to decrypt PGP messages. Remote attackers can submit private keys, ciphertext, and passphrases to perform server-side decryption without credentials, exposing key material to logs and enabling resource exhaustion attacks.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.5

Exploitability

3.9

REFERENCES

CVE-2026-56345

SUMMARY

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target users_id from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload with a filename containing an arbitrary users_id to invoke passwordless User->login() and establish an authenticated session as any user including admin. Attackers can obtain the Meet shared secret through path-traversal vulnerabilities or timing attacks against checkToken.json.php, then POST a crafted file to uploadRecordedVideo.json.php with a filename like '1-anything.mp4' to hijack admin sessions and gain full account takeover.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.2

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.2

REFERENCES

CVE-2026-56342

SUMMARY

AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenticated administrators to read arbitrary URLs via the statsURL parameter, which lacks isSSRFSafeURL() validation and accepts requests to private IP ranges and cloud metadata endpoints. Attackers can exploit this by crafting requests to internal services, cloud metadata endpoints like 169.254.169.254, and localhost to retrieve sensitive information including IAM credentials, internal service responses, and network configuration details.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.8)

cvss3

Base Score: 6.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

cvss4

Base Score: 6.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

2.3

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…