VYPR
Vendor

QingdaoU

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2018-16367CriSep 2, 2018
    risk 0.65cvss 9.9epss 0.02

    In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file data with a #include.

  • CVE-2026-5538MedApr 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in QingdaoU OnlineJudge up to 1.6.1. Affected by this issue is the function service_url of the file JudgeServer.service_url of the component judge_server_heartbeat Endpoint. The manipulation results in server-side request forgery. It is possible to…