CNNVD-202601-3451 Information

CNNVD ID

CNNVD-202601-3451

Related CVE

CVE-2026-23873

• CNNVD Published: 2026-01-22

Description (Chinese)

HUSTOJ是中国张浩斌（zhblue）个人开发者的一个流行的 OJ 系统。 HUSTOJ存在安全漏洞，该漏洞源于应用程序在导出到.xls文件前未清理用户提供的输入，可能导致CSV注入和任意命令执行。

Description (English)

HUSTOJ is a popular OJ system for zhblue personal developers in China. HUSTOJ has a security loophole, which stems from the fact that the application did not clear the input provided by the user prior to export to the.xls file, which could lead to CSV injection and arbitrary command execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-22

Last Modified

2026-02-24

References

https://github.com/zhblue/hustoj/security/advisories/GHSA-gqwv-v7vx-2qjw https://access.redhat.com/security/cve/cve-2026-23873