CVE-2018-16367
Published
CVSS v3
N/A
CVSS v2
9
HIGH
Affected
1
PROJECT
Description
In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file data with a #include.
Open source online judge based on Vue, Django and Docker. | 青岛大学开源 Online Judge | QQ群 496710125 | [email protected]
GitHub