High severity8.8NVD Advisory· Published Oct 10, 2019· Updated Jun 17, 2026
CVE-2019-17490
CVE-2019-17490
Description
app\modules\polygon\controllers\ProblemController in Jiangnan Online Judge (aka jnoj) 0.8.0 allows arbitrary file upload, as demonstrated by PHP code (with a .php filename but the image/png content type) to the web/polygon/problem/tests URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Jiangnan/Online Judgedescription
Patches
Vulnerability mechanics
References
1- github.com/shi-yang/jnoj/issues/51nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.