Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2012-4238

🗓️ 20 Aug 2012 20:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 39 Views🌐 WEB

CVE-2012-4238 Cross-site scripting (XSS) vulnerability in admin/code/tce_edit_answer.php in TCExam before 11.3.00

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Cvelist		CVE-2012-4238
20 Aug 201220:00
cvelist
EUVD		EUVD-2012-4182
7 Oct 202500:30
euvd
NVD		CVE-2012-4238
20 Aug 201220:55
nvd
Packet Storm		TCExam 11.3.007 Cross Site Scripting
14 Aug 201200:00
packetstorm
Prion		Cross site scripting
20 Aug 201220:55
prion
RedhatCVE		CVE-2012-4238
22 May 202502:07
redhatcve
securityvulns		TCExam Edit Cross-Site Scripting
3 Sep 201200:00
securityvulns
securityvulns		Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
3 Sep 201200:00
securityvulns
NVD
Node
tecnicktcexamRange11.3.007
OR
tecnicktcexamMatch10.1.000
OR
tecnicktcexamMatch10.1.001
OR
tecnicktcexamMatch10.1.002
OR
tecnicktcexamMatch10.1.003
OR
tecnicktcexamMatch10.1.004
OR
tecnicktcexamMatch10.1.005
OR
tecnicktcexamMatch10.1.006
OR
tecnicktcexamMatch10.1.007
OR
tecnicktcexamMatch10.1.008
OR
tecnicktcexamMatch10.1.009
OR
tecnicktcexamMatch10.1.010
OR
tecnicktcexamMatch10.1.011
OR
tecnicktcexamMatch10.1.012
OR
tecnicktcexamMatch10.1.013
OR
tecnicktcexamMatch11.0.000
OR
tecnicktcexamMatch11.0.001
OR
tecnicktcexamMatch11.0.002
OR
tecnicktcexamMatch11.0.003
OR
tecnicktcexamMatch11.0.004
OR
tecnicktcexamMatch11.0.005
OR
tecnicktcexamMatch11.0.006
OR
tecnicktcexamMatch11.0.007
OR
tecnicktcexamMatch11.0.008
OR
tecnicktcexamMatch11.0.009
OR
tecnicktcexamMatch11.0.010
OR
tecnicktcexamMatch11.0.011
OR
tecnicktcexamMatch11.0.012
OR
tecnicktcexamMatch11.0.013
OR
tecnicktcexamMatch11.0.014
OR
tecnicktcexamMatch11.0.015
OR
tecnicktcexamMatch11.0.016
OR
tecnicktcexamMatch11.1.000
OR
tecnicktcexamMatch11.1.001
OR
tecnicktcexamMatch11.1.002
OR
tecnicktcexamMatch11.1.003
OR
tecnicktcexamMatch11.1.004
OR
tecnicktcexamMatch11.1.005
OR
tecnicktcexamMatch11.1.006
OR
tecnicktcexamMatch11.1.007
OR
tecnicktcexamMatch11.1.008
OR
tecnicktcexamMatch11.1.009
OR
tecnicktcexamMatch11.1.010
OR
tecnicktcexamMatch11.1.011
OR
tecnicktcexamMatch11.1.012
OR
tecnicktcexamMatch11.1.013
OR
tecnicktcexamMatch11.1.014
OR
tecnicktcexamMatch11.1.015
OR
tecnicktcexamMatch11.1.016
OR
tecnicktcexamMatch11.1.017
OR
tecnicktcexamMatch11.1.018
OR
tecnicktcexamMatch11.1.019
OR
tecnicktcexamMatch11.1.020
OR
tecnicktcexamMatch11.1.021
OR
tecnicktcexamMatch11.1.022
OR
tecnicktcexamMatch11.1.023
OR
tecnicktcexamMatch11.1.024
OR
tecnicktcexamMatch11.1.025
OR
tecnicktcexamMatch11.1.026
OR
tecnicktcexamMatch11.1.027
OR
tecnicktcexamMatch11.1.028
OR
tecnicktcexamMatch11.1.029
OR
tecnicktcexamMatch11.1.030
OR
tecnicktcexamMatch11.1.031
OR
tecnicktcexamMatch11.2.000
OR
tecnicktcexamMatch11.2.001
OR
tecnicktcexamMatch11.2.002
OR
tecnicktcexamMatch11.2.003
OR
tecnicktcexamMatch11.2.004
OR
tecnicktcexamMatch11.2.005
OR
tecnicktcexamMatch11.2.006
OR
tecnicktcexamMatch11.2.007
OR
tecnicktcexamMatch11.2.008
OR
tecnicktcexamMatch11.2.010
OR
tecnicktcexamMatch11.2.011
OR
tecnicktcexamMatch11.2.012
OR
tecnicktcexamMatch11.2.013
OR
tecnicktcexamMatch11.2.014
OR
tecnicktcexamMatch11.2.015
OR
tecnicktcexamMatch11.2.016
OR
tecnicktcexamMatch11.2.017
OR
tecnicktcexamMatch11.2.018
OR
tecnicktcexamMatch11.2.020
OR
tecnicktcexamMatch11.2.021
OR
tecnicktcexamMatch11.2.022
OR
tecnicktcexamMatch11.2.023
OR
tecnicktcexamMatch11.2.025
OR
tecnicktcexamMatch11.2.026
OR
tecnicktcexamMatch11.2.027
OR
tecnicktcexamMatch11.2.028
OR
tecnicktcexamMatch11.2.029
OR
tecnicktcexamMatch11.2.030
OR
tecnicktcexamMatch11.2.031
OR
tecnicktcexamMatch11.2.032
OR
tecnicktcexamMatch11.3.000
OR
tecnicktcexamMatch11.3.001
OR
tecnicktcexamMatch11.3.002
OR
tecnicktcexamMatch11.3.003
OR
tecnicktcexamMatch11.3.004
OR
tecnicktcexamMatch11.3.005
OR
tecnicktcexamMatch11.3.006
ParameterPositionPathDescriptionCWE
question_subject_idquery param/TCExam/admin/code/tce_edit_answer.phpCross-site scripting via unsanitised question_subject_id parameter written to tce_edit_answer.php pageCWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Apr 2026 01:13Current
5.4Medium risk
Vulners AI Score5.4
CVSS 22.1
EPSS0.00181
CWE-79
cve-2012-4238cross-site scriptingxssvulnerabilitytcexamadminsecuritynvd
39