Description
A stored cross-site scripting vulnerability exists in TCExam <= 14.8.1. Valid files uploaded via tce_filemanager.php with a filename beggining with a period will be rendered as text/html. An attacker with access to tce_filemanager.php could upload a malicious javascript payload which would be triggered when another user views the file.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-26691)
PHP Other Vulnerability (CVE-2006-1014)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-35625)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0)
MediaWiki Incorrect Authorization Vulnerability (CVE-2022-29906)