Full title: Judge0 Sandbox Escape Exploit Category: remote exploits Platform: linux Judge0 does not account for symlinks placed inside the sandbox directory, which can be leveraged by an attacker to write to arbitrary files and gain code execution outside of the sandbox. # 0day.today @ http://0day.today/