Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tecnick tcexam 11.1.015 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-3806
TCExam 11.1.015 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/code/tce_page_footer.php and certain other files.
Tecnick Tcexam 11.1.015
NA
CVE-2012-4601
Multiple SQL injection vulnerabilities in Nicola Asuni TCExam prior to 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_groups[] parameter to admin/code/tce_edit_test.php or (2) subject_id parameter t...
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
NA
CVE-2012-4602
Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni TCExam prior to 11.3.009 allow remote malicious users to inject arbitrary web script or HTML via the (1) cid or (2) uids parameter.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
NA
CVE-2012-4237
Multiple SQL injection vulnerabilities in TCExam prior to 11.3.008 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the subject_module_id parameter to (1) tce_edit_answer.php or (2) tce_edit_question.php.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
Tecnick Tcexam 11.2.021
2 EDB exploits
NA
CVE-2012-4238
Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam prior to 11.3.008 allows remote authenticated users with level 5 or greater permissions to inject arbitrary web script or HTML via the question_subject_id parameter.
Tecnick Tcexam 11.1.019
Tecnick Tcexam 11.3.000
Tecnick Tcexam 10.1.013
Tecnick Tcexam 10.1.007
Tecnick Tcexam 11.2.016
Tecnick Tcexam 11.2.032
Tecnick Tcexam 11.2.005
Tecnick Tcexam 11.1.004
Tecnick Tcexam 11.1.021
Tecnick Tcexam 11.1.006
Tecnick Tcexam 10.1.005
Tecnick Tcexam 11.0.009
Tecnick Tcexam 11.0.016
Tecnick Tcexam 10.1.002
Tecnick Tcexam 10.1.011
Tecnick Tcexam 11.2.020
Tecnick Tcexam 11.2.000
Tecnick Tcexam 11.0.015
Tecnick Tcexam 11.2.003
Tecnick Tcexam 11.0.001
Tecnick Tcexam 11.2.010
Tecnick Tcexam 11.2.021
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started