TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-20114 - Vulnerability Database

TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-20114

High
Reference: CVE-2021-20114
Title: TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

When installed following the default/recommended settings TCExam lt 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory which included sensitive database backup files.