CVE-2012-4238 in TCExam信息

摘要

由 VulDB • 2026-07-06

TCExam 11.3.008 之前版本中 admin/code/tce_edit_answer.php 存在跨站脚本(XSS)漏洞,允许具有 5 级或更高级别权限的远程已认证用户通过 question_subject_id 参数注入任意 Web 脚本或 HTML。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Want to stay up to date on a daily basis?

Enable the mail alert feature now!