Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

tecnick tcexam 11.1.015 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2011-3806
TCExam 11.1.015 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/code/tce_page_footer.php and certain other files.
Tecnick Tcexam 11.1.015
6
CVSSv2
CVE-2012-4601
Multiple SQL injection vulnerabilities in Nicola Asuni TCExam prior to 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_groups[] parameter to admin/code/tce_edit_test.php or (2) subject_id parameter t...
Tecnick Tcexam 11.1.019Tecnick Tcexam 11.3.000Tecnick Tcexam 10.1.013Tecnick TcexamTecnick Tcexam 10.1.007Tecnick Tcexam 11.2.016Tecnick Tcexam 11.2.032Tecnick Tcexam 11.2.005Tecnick Tcexam 11.1.004Tecnick Tcexam 11.1.021Tecnick Tcexam 11.1.006Tecnick Tcexam 10.1.005Tecnick Tcexam 11.0.009Tecnick Tcexam 11.0.016Tecnick Tcexam 10.1.002Tecnick Tcexam 10.1.011Tecnick Tcexam 11.2.020Tecnick Tcexam 11.2.000Tecnick Tcexam 11.0.015Tecnick Tcexam 11.2.003Tecnick Tcexam 11.0.001Tecnick Tcexam 11.2.010
4.3
CVSSv2
CVE-2012-4602
Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni TCExam prior to 11.3.009 allow remote malicious users to inject arbitrary web script or HTML via the (1) cid or (2) uids parameter.
Tecnick Tcexam 11.1.019Tecnick Tcexam 11.3.000Tecnick Tcexam 10.1.013Tecnick TcexamTecnick Tcexam 10.1.007Tecnick Tcexam 11.2.016Tecnick Tcexam 11.2.032Tecnick Tcexam 11.2.005Tecnick Tcexam 11.1.004Tecnick Tcexam 11.1.021Tecnick Tcexam 11.1.006Tecnick Tcexam 10.1.005Tecnick Tcexam 11.0.009Tecnick Tcexam 11.0.016Tecnick Tcexam 10.1.002Tecnick Tcexam 10.1.011Tecnick Tcexam 11.2.020Tecnick Tcexam 11.2.000Tecnick Tcexam 11.0.015Tecnick Tcexam 11.2.003Tecnick Tcexam 11.0.001Tecnick Tcexam 11.2.010
6.8
CVSSv2
CVE-2012-4237
Multiple SQL injection vulnerabilities in TCExam prior to 11.3.008 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the subject_module_id parameter to (1) tce_edit_answer.php or (2) tce_edit_question.php.
Tecnick Tcexam 11.1.019Tecnick Tcexam 11.3.000Tecnick Tcexam 10.1.013Tecnick Tcexam 10.1.007Tecnick Tcexam 11.2.016Tecnick Tcexam 11.2.032Tecnick Tcexam 11.2.005Tecnick Tcexam 11.1.004Tecnick Tcexam 11.1.021Tecnick Tcexam 11.1.006Tecnick Tcexam 10.1.005Tecnick Tcexam 11.0.009Tecnick Tcexam 11.0.016Tecnick Tcexam 10.1.002Tecnick Tcexam 10.1.011Tecnick Tcexam 11.2.020Tecnick Tcexam 11.2.000Tecnick Tcexam 11.0.015Tecnick Tcexam 11.2.003Tecnick Tcexam 11.0.001Tecnick Tcexam 11.2.010Tecnick Tcexam 11.2.021
2.1
CVSSv2
CVE-2012-4238
Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam prior to 11.3.008 allows remote authenticated users with level 5 or greater permissions to inject arbitrary web script or HTML via the question_subject_id parameter.
Tecnick Tcexam 11.1.019Tecnick Tcexam 11.3.000Tecnick Tcexam 10.1.013Tecnick Tcexam 10.1.007Tecnick Tcexam 11.2.016Tecnick Tcexam 11.2.032Tecnick Tcexam 11.2.005Tecnick Tcexam 11.1.004Tecnick Tcexam 11.1.021Tecnick Tcexam 11.1.006Tecnick Tcexam 10.1.005Tecnick Tcexam 11.0.009Tecnick Tcexam 11.0.016Tecnick Tcexam 10.1.002Tecnick Tcexam 10.1.011Tecnick Tcexam 11.2.020Tecnick Tcexam 11.2.000Tecnick Tcexam 11.0.015Tecnick Tcexam 11.2.003Tecnick Tcexam 11.0.001Tecnick Tcexam 11.2.010Tecnick Tcexam 11.2.021
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook