Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
json project json vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-23459
Jsonxx or Json++ is a JSON parser, writer and reader written in C++. In affected versions of jsonxx use of the Value class may lead to memory corruption via a double free or via a use after free. The value class has a default assignment operator which may be used with pointer typ...
Json\\+\\+ Project Json\\+\\+ 1.0.0
Json\\+\\+ Project Json\\+\\+ 1.0.1
NA
CVE-2022-23460
Jsonxx or Json++ is a JSON parser, writer and reader written in C++. In affected versions of jsonxx json parsing may lead to stack exhaustion in an address sanitized (ASAN) build. This issue may lead to Denial of Service if the program using the jsonxx library crashes. This issue...
Json\\+\\+ Project Json\\+\\+ 1.0.0
Json\\+\\+ Project Json\\+\\+ 1.0.1
7.5
CVSSv2
CVE-2018-17072
JSON++ through 2016-06-15 has a buffer over-read in yyparse() in json.y.
Json\\+\\+ Project Json\\+\\+
NA
CVE-2023-34610
An issue exists json-io thru 4.14.0 allows malicious users to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies.
Json-io Project Json-io
NA
CVE-2023-34612
An issue exists ph-json thru 9.5.5 allows malicious users to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies.
Ph-json Project Ph-json
5
CVSSv2
CVE-2015-4590
The extractFrom function in Internals/QuotedString.cpp in Arduino JSON prior to 4.5 allows remote malicious users to cause a denial of service (crash) via a JSON string with a \ (backslash) followed by a terminator, as demonstrated by "\\\0", which triggers a buffer ove...
Arduino Json Project Arduino Json
7.5
CVSSv2
CVE-2016-20001
The REST/JSON project 7.x-1.x for Drupal allows node access bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
Rest\\/json Project Rest\\/json
5
CVSSv2
CVE-2016-20003
The REST/JSON project 7.x-1.x for Drupal allows user enumeration, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
Rest\\/json Project Rest\\/json
5
CVSSv2
CVE-2016-20006
The REST/JSON project 7.x-1.x for Drupal allows blockage of user logins, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
Rest\\/json Project Rest\\/json
NA
CVE-2022-4742
A vulnerability, which was classified as critical, has been found in json-pointer up to 0.6.1. Affected by this issue is the function set of the file index.js. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution...
Json-pointer Project Json-pointer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »