Qduoj: >> Onlinejudge >> 2.0 Security Vulnerabilities
In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file data with a #include.
CVSS Score
9.9
EPSS Score
0.009
Published
2018-09-02