PT-2019-15166 · Jnoj · Jiangnan Online Judge

Published

2019-10-10

Updated

2019-10-16

CVE-2019-17490

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Jiangnan Online Judge (aka jnoj) version 0.8.0

Description The issue allows for arbitrary file upload. This can be achieved by uploading PHP code with a .php filename but setting the content type to image/png, and sending it to the "web/polygon/problem/tests" API endpoint.

Recommendations For Jiangnan Online Judge (aka jnoj) version 0.8.0, consider disabling the file upload functionality in the ProblemController until a patch is available. Restrict access to the "web/polygon/problem/tests" API endpoint to minimize the risk of exploitation. Avoid allowing uploads with mismatched file extensions and content types.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2019-17490

Affected Products

Jiangnan Online Judge

PT-2019-15166 · Jnoj · Jiangnan Online Judge

CVE-2019-17490

Weakness Enumeration

Related Identifiers

Affected Products

References · 3