Multiple SQL injection vulnerabilities in TCExam before 11.3.008 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the subject_module_id parameter to (1) tce_edit_answer.php or (2) tce_edit_question.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:15:34
Updated: 2022-10-03T16:15:34
Reserved: 2022-10-03T00:00:00
Link: CVE-2012-4237
JSON object: View
NVD Information
Status : Modified
Published: 2012-08-20T20:55:03.893
Modified: 2023-11-07T02:11:49.767
Link: CVE-2012-4237
JSON object: View
Redhat Information
No data.
CWE