Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tecnick tcexam 11.1.015 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2011-3806
TCExam 11.1.015 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/code/tce_page_footer.php and certain other files.
Tecnick Tcexam 11.1.015
534
VMScore
CVE-2012-4601
Multiple SQL injection vulnerabilities in Nicola Asuni TCExam prior to 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_groups[] parameter to admin/code/tce_edit_test.php or (2) subject_id parameter t...
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
383
VMScore
CVE-2012-4602
Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni TCExam prior to 11.3.009 allow remote malicious users to inject arbitrary web script or HTML via the (1) cid or (2) uids parameter.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
690
VMScore
CVE-2012-4237
Multiple SQL injection vulnerabilities in TCExam prior to 11.3.008 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the subject_module_id parameter to (1) tce_edit_answer.php or (2) tce_edit_question.php.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
Tecnick Tcexam 11.2.021
2 EDB exploits
187
VMScore
CVE-2012-4238
Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam prior to 11.3.008 allows remote authenticated users with level 5 or greater permissions to inject arbitrary web script or HTML via the question_subject_id parameter.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
Tecnick Tcexam 11.2.021
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started