Lucene search
K

33 matches found

Vulnrichment
Vulnrichment
added 2024/12/30 10:5 a.m.6 views

CVE-2024-47925 Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

7.5CVSS7AI score0.00482EPSS
Exploits0References1
CVE
CVE
added 2024/12/30 10:5 a.m.63 views

CVE-2024-47925

CVE-2024-47925 concerns Tecnick TCExam, with a Cross-site Scripting (CWE-79) vulnerability arising from improper input neutralization during web page generation. Reports from NVD/CVELIST/CIRCL and vendor pages confirm impact as high on confidentiality (CWEs indicate XSS) and a network-attack surf...

7.5CVSS7.6AI score0.00482EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/30 10:5 a.m.19 views

CVE-2024-47925 Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

7.5CVSS0.00482EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/30 12:0 a.m.3 views

PT-2024-32901 · Tecnick · Tcexam

Name of the Vulnerable Software and Affected Versions: Tecnick TCExam affected versions not specified Description: The issue is related to Cross-site Scripting XSS due to improper neutralization of input during web page generation. This can lead to the execution of malicious scripts on the...

7.5CVSS6.3AI score0.00482EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/12/30 12:0 a.m.4 views

Tecnick TCExam 跨站脚本漏洞

Tecnick TCExam is a Web-based open source e-exam system from the UK company Tecnick. The system is mainly used for online exams and so on. Tecnick TCExam suffers from a cross-site scripting vulnerability that originates from improper input neutralization during web page generation, resulting in a...

7.5CVSS6.1AI score0.00482EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.2 views

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. A security vulnerability exists in versions of TCPDF prior to 6.8.0 that stems from etSVGStyles does not clean up SVG font family properties...

7.5CVSS6.4AI score0.00603EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. A security vulnerability exists in TCPDF versions prior to 6.8.0, which stems from insecure settings of CURLOPTSSLVERIFYHOST and CURLOPTSSLVERIFYPEER...

9.8CVSS6.4AI score0.00748EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/28 12:0 a.m.4 views

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. TCPDF 6.7.4 and earlier versions have a security vulnerability that stems from vulnerability to ReDoS Regular Expression Denial of Service attacks...

7.5CVSS7.3AI score0.01113EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/04/15 12:0 a.m.5 views

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. A security vulnerability exists in TCPDF versions prior to 6.7.4, which stems from incorrectly handling calls that use HTML syntax...

6.1CVSS6.1AI score0.00582EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.3 views

Tecnick TCExam Security Breach

Tecnick TCExam is a Web-based open source e-exam system from Tecnick UK. The system is mainly used for online exams, etc. A security vulnerability exists in Tecnick TCExam versions prior to 15.1.0, which stems from an insufficiently protected external authorization mechanism in the admin folder...

6.5CVSS6.7AI score0.00581EPSS
Exploits0References4
CNVD
CNVD
added 2020/05/08 12:0 a.m.3 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability (CNVD-2020-28048)

Tecnick.com TCExam is a Web-based open source e-exam system from Tecnick.com, UK. The system is mainly used for online exams and more. A security vulnerability exists in Tecnick.com TCExam, which can be exploited by attackers to cause cross-site scripting XSS attacks...

5.4CVSS6AI score0.00666EPSS
Exploits1References1
CNVD
CNVD
added 2020/05/08 12:0 a.m.4 views

Tecnick.com TCExam Cross-Site Scripting Vulnerability (CNVD-2020-32377)

Tecnick.com TCExam is a Web-based open source e-exam system from Tecnick.com, UK. The system is mainly used for online exams and more. A cross-site scripting vulnerability exists in Tecnick.com TCExam version 14.2.2, which can be exploited by remote attackers to inject malicious JavaScript code...

5.4CVSS6.3AI score0.00666EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.40 views

AIOCP 1.4.001 CSRF Vulnerability

No description provided by source. Source: http://packetstormsecurity.org/files/view/98247/AIOCP-1.4.001-xsrf.txt !------------------------------------------------------------------------ Software................AIOCP All In One Control Panel 1.4.001 Vulnerability...........Cross-site Request...

7.1AI score
Exploits0
Rows per page
Query Builder