Lucene search
+L

250 matches found

prion
prion
added 2007/05/02 12:19 a.m.13 views

Directory traversal

shared/code/tcetmx.php in TCExam 4.0.011 and earlier allows remote attackers to create arbitrary PHP files in cache/ by placing file contents and directory traversal manipulations into a SessionUserLang cookie to public/code/index.php...

7.8CVSS7.4AI score0.03702EPSS
Exploits0References7Affected Software1
prion
prion
added 2007/05/02 12:19 a.m.17 views

Cross site scripting

Dynamic variable evaluation vulnerability in shared/config/tceconfig.php in TCExam 4.0.011 and earlier allows remote attackers to conduct cross-site scripting XSS and possibly other attacks by modifying critical variables such as $SERVER, as demonstrated by injecting web script via the...

6.8CVSS6.3AI score0.05102EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2007/05/02 12:0 a.m.19 views

CVE-2007-2431

Dynamic variable evaluation vulnerability in shared/config/tceconfig.php in TCExam 4.0.011 and earlier allows remote attackers to conduct cross-site scripting XSS and possibly other attacks by modifying critical variables such as $SERVER, as demonstrated by injecting web script via the...

5.9AI score0.05102EPSS
Exploits0References6
cvelist
cvelist
added 2007/05/02 12:0 a.m.20 views

CVE-2007-2430

shared/code/tcetmx.php in TCExam 4.0.011 and earlier allows remote attackers to create arbitrary PHP files in cache/ by placing file contents and directory traversal manipulations into a SessionUserLang cookie to public/code/index.php...

6.9AI score0.03702EPSS
Exploits0References7
cve
cve
added 2007/05/02 12:0 a.m.61 views

CVE-2007-2430

CVE-2007-2430 affects TCExam 4.0.011 and earlier. The vulnerability is in shared/code/tce_tmx.php, where an attacker can create arbitrary PHP files in cache/ by placing crafted content and directory-traversal data into a SessionUserLang cookie that is processed by public/code/index.php. This indi...

7.8CVSS6.9AI score0.03702EPSS
Exploits0References7Affected Software1
cve
cve
added 2007/05/02 12:0 a.m.49 views

CVE-2007-2431

TCExam 4.0.011 and earlier are affected by a dynamic variable evaluation vulnerability in shared/config/tce_config.php. The flaw allows remote XSS by modifying critical variables (notably $_SERVER) via _SERVER[SCRIPT_NAME], enabling script injection and related impact as described in the CVE entr...

6.8CVSS5.9AI score0.05102EPSS
Exploits0References6Affected Software1
seebug
seebug
added 2007/04/30 12:0 a.m.29 views

TCExam <= 4.0.011 (SessionUserLang) Shell Injection Exploit

No description provided by source. ?php printr' -------------------------------------------------------------------------- TCExam = 4.0.011 $COOKIE"SessionUserLang" shell injection exploit by rgod mail: retrog at alice dot it site: http://retrogod.altervista.org...

7.1AI score
Exploits0
zdt
zdt
added 2007/04/29 12:0 a.m.108 views

TCExam <= 4.0.011 (SessionUserLang) Shell Injection Exploit

Exploit for unknown platform in category web applications =========================================================== TCExam resource = array; // set selecteed language $this-language = strtoupper$language; // set filename for cache $this-cachefile = $cachefile; if fileexists$this-cachefile // re...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2007/04/29 12:0 a.m.31 views

TCExam 4.0.011 - &#039;SessionUserLang&#039; Shell Injection

resource = array; // set selecteed language $this-language = strtoupper$language; // set filename for cache $this-cachefile = $cachefile; if fileexists$this-cachefile // read data from cache requireonce$this-cachefile; $this-resource = $tmx; else if !empty$this-cachefile // open cache file...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/04/29 12:0 a.m.14 views

TCExam 4.0.011 - SessionUserLang Shell Injection

TCExam 4.0.011 - SessionUserLang Shell Injection resource = array; // set selecteed language $this-language = strtoupper$language; // set filename for cache $this-cachefile = $cachefile; if fileexists$this-cachefile // read data from cache requireonce$this-cachefile; $this-resource = $tmx; else i...

7.7AI score
Exploits0
Rows per page
Query Builder