TCExam Missing Authorization Vulnerability - CVE-2023-6554 - Vulnerability Database

TCExam Missing Authorization Vulnerability - CVE-2023-6554

Medium
Reference: CVE-2023-6554
Title: TCExam Missing Authorization Vulnerability
Overview:

When access to the quotadminquot folder is not protected by some external authorization mechanisms e.g. Apache Basic Auth it is possible for any user to download protected information like exam answers.