Title: testMaker Remote Unspecified PHP Script Code Execution Vulnerability
Severity: HIGH
Description:
testMaker is web-based assessment software that is implemented in PHP.
The application is prone to a vulnerability caused by unspecified errors in the code. This vulnerability will allow a remote attacker to run arbitrary PHP code in the context of the hosting webserver process.
Few technical details are currently available. We will update this BID as soon as more information emerges.
Versions up to testMaker3.0p16 are vulnerable.
Affected Products:
- testMaker testMaker 3.0p15
References:
- testMaker: testMaker Project Page
- testMaker: testMaker Release Notes
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
