Max CVSS | 7.8 | Min CVSS | 6.8 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-2431 | 6.8 |
Dynamic variable evaluation vulnerability in shared/config/tce_config.php in TCExam 4.0.011 and earlier allows remote attackers to conduct cross-site scripting (XSS) and possibly other attacks by modifying critical variables such as $_SERVER, as demo
|
11-10-2017 - 01:32 | 02-05-2007 - 00:19 | |
CVE-2007-2430 | 7.8 |
shared/code/tce_tmx.php in TCExam 4.0.011 and earlier allows remote attackers to create arbitrary PHP files in cache/ by placing file contents and directory traversal manipulations into a SessionUserLang cookie to public/code/index.php.
|
11-10-2017 - 01:32 | 02-05-2007 - 00:19 |