In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsorg.apache.pdfbox:pdfbox-app
Affected versions of the package are vulnerable to Authentication Bypass. The ReadOnly permissions are not called in the StandardSecurityHandler
, allowing all users to edit the PDF file although the are not the owners.