466 matches found
CVE-2026-25117 pwn.college DOJO vulnerable to sandbox escape leading to arbitrary javascript execution
pwn.college DOJO is an education platform for learning cybersecurity. Prior to commit e33da14449a5abcff507e554f66e2141d6683b0a, missing sandboxing on /workspace/ routes allows challenge authors to inject arbitrary javascript which runs on the same origin as http://dojo.website. This is a sandbox...
DOJO Cross-Site Scripting Vulnerabilities
DOJO is a JavaScript toolkit open source by pwn.college. pwn.college’s DOJO has a cross-site scripting vulnerability; this vulnerability stems from the lack of sandbox isolation, which may lead to sandbox escape and arbitrary JavaScript execution...
Exploit for CVE-2025-62376
Improper Authentication in pwn.college DOJO Education Platform...
Exploit for CVE-2025-62376
CVE-2025-62376: Local Privilege Escalation Exploit for Sudo...
CVE-2025-62376 pwn.college DOJO vulnerable to improper authentication in workspace endpoint allowing unauthorized Windows VM access
pwn.college DOJO is an education platform for learning cybersecurity. Prior to commit 467db0b9ea0d9a929dc89b41f6eb59f7cfc68bef, the /workspace endpoint contains an improper authentication vulnerability that allows an attacker to access any active Windows VM without proper authorization. The...
CVE-2025-62376
The CVE-2025-62376 issue affects the pwn.college DOJO platform’s /workspace endpoint. The view_desktop flow retrieves the user via a URL parameter without confirming administrative privileges, enabling an attacker to specify any user ID and an arbitrary password to impersonate that user. When req...
CVE-2025-62376 pwn.college DOJO vulnerable to improper authentication in workspace endpoint allowing unauthorized Windows VM access
pwn.college DOJO is an education platform for learning cybersecurity. Prior to commit 467db0b9ea0d9a929dc89b41f6eb59f7cfc68bef, the /workspace endpoint contains an improper authentication vulnerability that allows an attacker to access any active Windows VM without proper authorization. The...
DOJO 授权问题漏洞
DOJO is an open source JavaScript toolkit from pwn.college. DOJO suffers from an authorization issue vulnerability that stems from improper authentication of the /workspace endpoint, which could lead to unauthorized access to a Windows virtual machine...
EUVD-2006-3555
Malware in sbrugna...
EUVD-2020-0702
Malware in sbrugna...
EUVD-2014-6082
Malware in sbrugna...
EUVD-2010-2286
Malware in sbrugna...
EUVD-2010-2284
Malware in sbrugna...
EUVD-2020-1205
Malware in sbrugna...
EUVD-2014-8744
Malware in sbrugna...
EUVD-2007-2371
Malware in sbrugna...
EUVD-2020-0349
Malware in sbrugna...
EUVD-2018-0543
Malware in sbrugna...
EUVD-2010-4566
Malware in sbrugna...
EUVD-2012-2175
Malware in sbrugna...