Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-20114 - Vulnerability Database
TCExam

TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-20114

High
Reference: CVE-2021-20114
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-20114
Title: TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

When installed following the default/recommended settings TCExam lt 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory which included sensitive database backup files.