4 matches found
CVE-2019-17491
Jiangnan Online Judge aka jnoj 0.8.0 has XSS via the Problemdescription parameter to web/admin/problem/create or web/polygon/problem/update...
CVE-2019-17491
Jiangnan Online Judge aka jnoj 0.8.0 has XSS via the Problemdescription parameter to web/admin/problem/create or web/polygon/problem/update...
CVE-2019-17491
Jiangnan Online Judge (jnoj) 0.8.0 is affected by a stored/reflected XSS in the Problem[description] parameter used by web/admin/problem/create and web/polygon/problem/update. The root cause is insufficient validation/escaping of client-side data in the WEB application, allowing injection of scri...
CVE-2019-17491
Jiangnan Online Judge aka jnoj 0.8.0 has XSS via the Problemdescription parameter to web/admin/problem/create or web/polygon/problem/update...