CVE-2021-20114
18Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 6.0%
exploitation probability
6.0%top 8% of all CVEs
observed exploitation
nono source reports it
When installed following the default/recommended settings, TCExam <= 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory, which included sensitive database backup files.
Affected products
n/a · TCExam