TCExam SQL injection in tce_edit_answer.php and tce_edit_question.php. Attacker with authoring permissions could take full control of database
Reporter | Title | Published | Views | Family All 8 |
---|---|---|---|---|
Exploit DB | TCExam 11.2.x - '/admin/code/tce_edit_answer.php' Multiple SQL Injections | 7 Aug 201200:00 | – | exploitdb |
Exploit DB | TCExam 11.2.x - '/admin/code/tce_edit_question.php?subject_module_id' SQL Injection | 7 Aug 201200:00 | – | exploitdb |
CVE | CVE-2012-4237 | 20 Aug 201220:55 | – | cve |
Prion | Sql injection | 20 Aug 201220:55 | – | prion |
Cvelist | CVE-2012-4237 | 20 Aug 201220:00 | – | cvelist |
Packet Storm | TCExam 11.3.007 SQL Injection | 14 Aug 201200:00 | – | packetstorm |
NVD | CVE-2012-4237 | 20 Aug 201220:55 | – | nvd |
securityvulns | Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | 3 Sep 201200:00 | – | securityvulns |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo