TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2021-20114
When installed following the default/recommended settings TCExam lt 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory which included sensitive database backup files.