All 6 CVE vulnerabilities found in dojo, with AI-generated Chinese analysis, references, and POCs.
Vendor: dojo
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25117 | pwn.college DOJO vulnerable to sandbox escape leading to arbitrary javascript execution CWE-20 | 7.6AI | HighAI | 2026-01-29 |
| CVE-2025-62376 | pwn.college DOJO vulnerable to improper authentication in workspace endpoint allowing unauthorized Windows VM access CWE-287 | 9.8AI | CriticalAI | 2025-10-14 |
| CVE-2025-24885 | pwn.college has a XSS on dojo pages CWE-284 | 7.6 | High | 2025-01-30 |
| CVE-2025-24886 | pwn.college has Symlink LFI in Dojo repos CWE-61 | 7.7 | High | 2025-01-30 |
| CVE-2021-23450 | Prototype Pollution | 7.5 | High | 2021-12-17 |
| CVE-2020-5258 | Prototype pollution in dojo CWE-94 | 7.7 | High | 2020-03-10 |
All 6 known CVE vulnerabilities affecting dojo with full Chinese analysis, references, and POCs where available.