Description
An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive information.
Remediation
References
Related Vulnerabilities
Elgg Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3733)
WordPress Plugin WordPress Download Manager Remote Code Execution (2.7.4)
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-7665)
WordPress Plugin WooCommerce Quick Reports Cross-Site Scripting (1.0.6)