Description
Improper Control of Resource Identifiers in TCExam 14.2.2 allows a remote, authenticated attacker to access test metadata for which they don't have permission.
Remediation
References
Related Vulnerabilities
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5866)
WordPress Plugin DSubscribers SQL Injection (1.2)
Jboss EAP CVE-2012-4529 Vulnerability (CVE-2012-4529)
Oracle JRE CVE-2022-21426 Vulnerability (CVE-2022-21426)
WordPress Plugin Simple Yearly Archive Cross-Site Scripting (2.1.8)