Description
Insufficient output sanitization in TCExam 14.2.2 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks by creating a crafted operator.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2003-0223)
Moodle Improper Authentication Vulnerability (CVE-2025-3634)
Drupal Other Vulnerability (CVE-2006-2832)
WordPress Plugin 10WebAnalytics Cross-Site Request Forgery (1.2.8)
WordPress Plugin Twenty20 Image Before-After Malicious Code (1.6.3)