| 제목 | QingdaoU OnlineJudge <=v1.6.1 Stored SSRF |
|---|
| 설명 | A stored Server-Side Request Forgery (SSRF) vulnerability exists in the Judge Server dispatcher of QingdaoU OnlineJudge. An attacker with access to a judge server token can submit a malicious service_url via the /api/admin/judge_server_heartbeat endpoint, which is then stored in the database. When the application subsequently processes judge tasks, it uses this unvalidated URL to construct and send internal HTTP requests. This allows the attacker to force the server to make arbitrary requests to internal network resources, potentially leading to metadata exfiltration, internal network scanning, or remote code execution.
|
|---|
| 원천 | ⚠️ https://github.com/AnalogyC0de/public_exp/issues/27 |
|---|
| 사용자 | Ana10gy (UID 93358) |
|---|
| 제출 | 2026. 03. 18. AM 10:10 (19 날 ago) |
|---|
| 모더레이션 | 2026. 04. 04. AM 08:44 (17 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 355291 [QingdaoU OnlineJudge 까지 1.6.1 judge_server_heartbeat Endpoint JudgeServer.service_url 권한 상승] |
|---|
| 포인트들 | 20 |
|---|