CVE-2024-40614

EGroupware before 23.1.20240624 mishandles an ORDER BY clause. This leads to json.php?menuaction=EGroupware\Api\Etemplate\Widget\Nextmatch::ajaxgetrows sort.id SQL injection by authenticated users for Address Book or InfoLog sorting...

PT-2023-29058 · Presto Changeo · Presto Changeo Attributegrid

Name of the Vulnerable Software and Affected Versions: Presto Changeo attributegrid versions up to 2.0.3 Description: The issue is related to a SQL injection vulnerability via the component disable json.php. This vulnerability was discovered in Presto Changeo attributegrid. Recommendations: For...

WWBN AVideo chunkFile information disclosure vulnerability

Talos Vulnerability Report TALOS-2022-1550 WWBN AVideo chunkFile information disclosure vulnerability August 16, 2022 CVE Number CVE-2022-28710 SUMMARY An information disclosure vulnerability exists in the chunkFile functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A...

AVideo Platform 8.1 - Information Disclosure (User Enumeration) Vulnerability

Exploit for jsp platform in category web applications Exploit Title: AVideo Platform 8.1 - Information Disclosure User Enumeration Exploit Author: Ihsan Sencan Vendor Homepage: https://avideo.com Software Link: https://github.com/WWBN/AVideo Version: 8.1 Tested on: Linux CVE: N/A POC: 1...

Computrols CBAS-Web 19.0.0 Command Injection

!/usr/bin/env python ''' Computrols CBAS-Web Unauthenticated Remote Command Injection Exploit Affected versions: 19.0.0 and below by Sipke Mellema, 2019 Advisory: https://applied-risk.com/resources/ar-2019-009 Paper: https://applied-risk.com/resources/i-own-your-building-management-system Uses tw...

CVE-2018-19558

An issue was discovered in arcms through 2018-03-19. SQL injection exists via the json/newslist limit parameter because of ctl/main/Json.php, ctl/main/service/Data.php, and comp/Db/Mysql.php...

Sql injection

An issue was discovered in arcms through 2018-03-19. SQL injection exists via the json/newslist limit parameter because of ctl/main/Json.php, ctl/main/service/Data.php, and comp/Db/Mysql.php...

XML External Entity (XXE) Processing

zendframework/zend-json is susceptible to XML external entity XXE processing attacks. The attacks can be triggered because when loading an XML formatted string into a Simple XML Element object. The fromXml function in Json.php does not validate the XML formatted string properly...

lottery.kapook.com XSS vulnerability

Vulnerable URL: http://lottery.kapook.com/json.php?jsonp=1=prompt/OPENBUGBOUNTY/...

iu.edu XSS vulnerability

Open Bug Bounty ID: OBB-58010 Description| Value ---|--- Affected Website:| iu.edu Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

CVE-2014-8352

Cross-site scripting XSS vulnerability in json.php in French National Commission on Informatics and Liberty aka CNIL CookieViz allows remote we servers to inject arbitrary web script or HTML via the maxdate parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in json.php in French National Commission on Informatics and Liberty aka CNIL CookieViz allows remote we servers to inject arbitrary web script or HTML via the maxdate parameter...

CVE-2014-8352

CVE-2014-8352 affects CNIL CookieViz: the json.php endpoint is vulnerable to cross-site scripting via the max_date parameter, allowing remote injection of arbitrary script/HTML. The NVD entry lists a MEDIUM base score (CVSS2: AV:N/AC:M/Au:N/C:N/I:P/A:N; base 4.3) with partial integrity impact and...

TomatoCart - json.php Security Bypass

TomatoCart - json.php Security Bypass source: https://www.securityfocus.com/bid/57156/info TomatoCart is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and create files with arbitrary shell script which may aid in further...

TomatoCart 'json.php' Directory Traversal Vulnerability

TomatoCart is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Directory traversal

Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. dot dot in the module parameter in a "3" action...

CVE-2012-5907

CVE-2012-5907 corresponds to a directory traversal vulnerability in TomatoCart's json.php (TomatoCart 1.2.0 Alpha 2 and possibly earlier). The issue allows remote attackers to read arbitrary files by injecting a .. in the module parameter for a "3" action, effectively a Local File Inclusion (LFI)...

TomatoCart 1.0.1 (json.php) Remote Cross-Site Scripting Vulnerability

Summary TomatoCart is the new generation of open source shopping cart solution developed by Elootec Technology Co., Ltd. It is branched from osCommerce 3 as a separate project. Description TomatoCart version 1.0.1 suffers from a XSS vulnerability because input passed via the "action" parameter to...