CVE-2024-25327 in Justice Systems FullCourt Enterprise
Summary
by MITRE • 03/08/2024
Cross Site Scripting (XSS) vulnerability in Justice Systems FullCourt Enterprise v.8.2 allows a remote attacker to execute arbitrary code via the formatCaseNumber parameter of the Citation search function.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Analysis
by VulDB Data Team • 04/15/2026
The vulnerability identified as CVE-2024-25327 represents a critical cross site scripting flaw within Justice Systems FullCourt Enterprise version 8.2. This security weakness resides in the Citation search function where the formatCaseNumber parameter fails to properly sanitize user input before processing. The vulnerability enables remote attackers to inject malicious script code into the application's response, potentially allowing them to execute arbitrary commands on affected systems. The flaw specifically manifests when the application processes case number formatting without adequate input validation or output encoding mechanisms, creating an exploitable entry point for malicious actors.
The technical exploitation of this vulnerability follows standard XSS attack patterns where an attacker crafts malicious input containing script payloads within the formatCaseNumber parameter. When the application processes this input and returns it to the user interface without proper sanitization, the embedded scripts execute in the context of the victim's browser session. This type of vulnerability falls under CWE-79 which specifically addresses Cross-Site Scripting vulnerabilities in software applications. The attack vector operates entirely through web-based interfaces, making it particularly dangerous as it requires no local system access or privileged credentials to exploit. The vulnerability demonstrates a classic failure in input validation and output encoding practices that are fundamental to preventing XSS attacks.
The operational impact of CVE-2024-25327 extends beyond simple script execution as it can potentially enable more sophisticated attacks including session hijacking, credential theft, and data exfiltration from the affected system. An attacker could leverage this vulnerability to escalate privileges within the application, access sensitive case information, or manipulate court records through malicious script injection. The vulnerability affects the integrity and confidentiality of the justice system's digital infrastructure, potentially compromising the trustworthiness of legal proceedings and sensitive judicial data. Given that FullCourt Enterprise is used in court environments, the implications of successful exploitation could undermine the entire judicial process by allowing unauthorized modifications to case data or by enabling surveillance of court personnel activities.
Security mitigations for this vulnerability should include immediate implementation of input validation and output encoding controls within the Citation search functionality. The application must sanitize all user-provided input through proper encoding mechanisms before processing or displaying any data. Organizations should implement Content Security Policy headers to limit script execution and prevent unauthorized code injection. Additionally, regular security assessments and code reviews should be conducted to identify similar vulnerabilities in other application components. The remediation process must align with ATT&CK framework techniques related to T1059.007 for command and script injection, emphasizing the importance of preventing malicious script execution at the application layer. System administrators should also implement network monitoring to detect potential exploitation attempts and maintain updated threat intelligence feeds to identify emerging attack patterns targeting similar vulnerabilities in legal software systems.