EUVD-2026-6082

A vulnerability was found in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. This affects the function webgetddnsuptime of the file /jdcapi of the component jdcwebrpc. Performing a manipulation results in Remote Privilege Escalation. The attack is possible to be carried out remotely. The exploit...

CVE-2026-2562 JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi cast_streen privileges management

A vulnerability was determined in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. This impacts the function caststreen of the file /jdcapi of the component jdcwebrpc. Executing a manipulation of the argument File can lead to Remote Privilege Escalation. The attack may be performed from remote. Th...

PT-2026-8357

A vulnerability was identified in JingDong JD Cloud Box AX6600 up to 4.5.1.r4533. Affected is the function set stcreenen deabled status/get status of the file /f/service/controlDevice of the component jdcapp rpc. The manipulation leads to Remote Privilege Escalation. It is possible to initiate th...

search.archives.jdc.org Cross Site Scripting vulnerability OBB-3401082

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

jdc-dance.org Cross Site Scripting vulnerability OBB-1198738

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Ability to have the Websudo functionality working with SAML / SSO

h3. Problem Definition When implementing SAML either through JDC or through a vendor plugin, the net result is you have to turn off websudo because you can't get websudo and SAML to work. The effect is you can go straight into administration functions without confirmation that you should. This...

Ability to have the Websudo functionality working with SAML / SSO

h3. Problem Definition When implementing SAML either through JDC or through a vendor plugin, the net result is you have to turn off websudo because you can't get websudo and SAML to work. The effect is you can go straight into administration functions without confirmation that you should. This...

Joomla component com_rpx Ulti RPX 2.1.0 - Local File Include

No description provided by source. Joomla component Ulti RPX 2.1.0 Local File Include Version : 2.1.0 Author : jdc Download : http://www.ultijoomla.com/downloads?func=fileinfo&id=33 http://site/index.php?option=comrpx&controller=../../../../../etc/passwd%00 jdc 2010...

Ninja RSS Syndicator 1.0.8 - Local File Include

No description provided by source. Joomla component Ninja RSS Syndicator 1.0.8 Local File Include Version : 1.0.8 Author : jdc Download : http://ninjaforge.com/index.php?option=comninjacentral&page=showpackage&id=74&Itemid=236...

Joomla component com_gcalendar Suite 2.1.5 - Local File Include

No description provided by source. Joomla component GCalendar Suite 2.1.5 Local File Include Version : 2.1.5 Author : jdc Download : http://g4j.laoneo.net/content/extensions/download/docdetails/28-gcalendar-suite-215.html...

Joomla! Component com_billyportfolio 1.1.2 - Blind SQL Injection

Joomla! Component combillyportfolio 1.1.2 - Blind SQL Injection Exploit Title: Joomla Component Billy Portfolio 1.1.2 Blind SQL Injection Date: 10 Dec 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/directory-a-documentation/portfolio/14834 Version: 1.1.2...

Joomla Billy Portfolio 1.1.2 Blind SQL Injection

Exploit Title: Joomla Component Billy Portfolio 1.1.2 Blind SQL Injection Date: 10 Dec 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/directory-a-documentation/portfolio/14834 Version: 1.1.2 index.php?option=combillyportfolio&view=billyportfolio&catid=-1 and...

MIT Kerberos 5 multiple checksum vulnerabilities

Checksum vulnerabilities in GSS-API, JDC, PAC and more...

Joomla RSform 1.0.5 Local File Inclusion / SQL Injection

Exploit Title: RSform! 1.0.5 Joomla Multiple Vulnerabilities Date: 06.11.2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/contacts-and-feedback/forms/2265 Version: 1.0.5 Local File Include ------------------ ?option=comforme 〈=../../../../../../../../../etc/passwd%00 SQL...

Joomla Ulti RPX 2.1.0 Local File Inclusion

Joomla component Ulti RPX 2.1.0 Local File Include Version : 2.1.0 Author : jdc Download : http://www.ultijoomla.com/downloads?func=fileinfo&id=33 http://site/index.php?option=comrpx&controller=../../../../../etc/passwd%00 jdc 2010...

Joomla GCalendar 2.1.5 Local File Inclusion

Joomla component GCalendar Suite 2.1.5 Local File Include Version : 2.1.5 Author : jdc Download : http://g4j.laoneo.net/content/extensions/download/docdetails/28-gcalendar-suite-215.html http://site/index.php?option=comgcalendar&controller=../../../../../etc/passwd%00 jdc 2010...

Joomla Ninja RSS Syndicator 1.0.8 Local File Inclusion

Joomla component Ninja RSS Syndicator 1.0.8 Local File Include Version : 1.0.8 Author : jdc Download : http://ninjaforge.com/index.php?option=comninjacentral&page=showpackage&id=74&Itemid=236 http://site/index.php?option=comninjarsssyndicator&controller=../../../../../etc/passwd%00 jdc 2010...

Ninja RSS Syndicator 1.0.8 - Local File Inclusion

Joomla component Ninja RSS Syndicator 1.0.8 Local File Include Version : 1.0.8 Author : jdc Download : http://ninjaforge.com/index.php?option=comninjacentral&page=showpackage&id=74&Itemid=236 http://site/index.php?option=comninjarsssyndicator&controller=../../../../../etc/passwd%00 jdc 2010...

Joomla! Component com_rpx Ulti RPX 2.1.0 - Local File Inclusion

Joomla component Ulti RPX 2.1.0 Local File Include Version : 2.1.0 Author : jdc Download : http://www.ultijoomla.com/downloads?func=fileinfo&id=33 http://site/index.php?option=comrpx&controller=../../../../../etc/passwd%00 jdc 2010...

Joomla component com_rpx Ulti RPX v2.1.0 Local File Include

Exploit for unknown platform in category web applications =========================================================== Joomla component comrpx Ulti RPX v2.1.0 Local File Include =========================================================== Joomla component Ulti RPX 2.1.0 Local File Include Version :...