CVE-2026-4169 Tecnick TCExam XML Export tce_xml_users.php F_xml_export_users cross site scripting

A security flaw has been discovered in Tecnick TCExam up to 16.6.0. Affected is the function Fxmlexportusers of the file admin/code/tcexmlusers.php of the component XML Export. Performing a manipulation results in cross site scripting. Remote exploitation of the attack is possible. There are stil...

CVE-2026-4169

The CVE-2026-4169 entry describes a cross-site scripting vulnerability in Tecnick TCExam up to version 16.6.0, specifically in the XML Export component: the function F_xml_export_users inside admin/code/tce_xml_users.php. Exploitation requires manipulating input and is noted as remotely explorabl...

SUSE CVE-2012-4601

Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the 1 usergroups parameter to admin/code/tceedittest.php or 2 subjectid parameter to...

Tecnick.com TCExam 跨站脚本漏洞

Tecnick.com TCExam is a Web-based open source e-exam system from Tecnick.com, UK. The system is primarily used for online exams, among other things. A security vulnerability exists in Tecnick.com TCExam, which stems from a reflected cross-site scripting vulnerability in TCExam prior to version...

Tecnick.com TCExam Cross-Site Scripting Vulnerability

Tecnick.com TCExam is a Web-based open source e-exam system from Tecnick.com, UK. The system is mainly used for online exams and more. A security vulnerability exists in Tecnick.com TCExam, which can be exploited by attackers to cause cross-site scripting XSS attacks...

TCExam Information Disclosure Vulnerability

TCExam is an open source e-testing system.TCExam currently uses open source CBA software. TCExam has an information disclosure vulnerability that allows attackers to exploit the vulnerability to gain access to sensitive information...