VYPR

TCExam

by TCExam

CVEs (23)

  • CVE-2012-4601Nov 23, 2012
    risk 0.00cvss epss 0.02

    Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_groups[] parameter to admin/code/tce_edit_test.php or (2) subject_id parameter to…

  • CVE-2012-4238Aug 20, 2012
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam before 11.3.008 allows remote authenticated users with level 5 or greater permissions to inject arbitrary web script or HTML via the question_subject_id parameter.

  • CVE-2007-6288Dec 10, 2007
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in TCExam before 5.1.000 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

Page 2 of 2