Filtered by vendor Blackboard
Subscriptions
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2017-18262 | 1 Blackboard | 1 Blackboard Learn | 2018-06-12 | N/A |
Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI. | ||||
CVE-2004-1581 | 1 Blackboard | 1 Blackboard | 2017-07-11 | N/A |
BlackBoard 1.5.1 allows remote attackers to gain sensitive information via a direct request to (1) checkdb.inc.php, (2) admin.inc.php or (3) cp.inc.php, which reveals the path in a PHP error message. | ||||
CVE-2014-0811 | 1 Blackboard | 1 Vista\/ce | 2015-08-13 | N/A |
Cross-site scripting (XSS) vulnerability in Blackboard Vista/CE 8.0 SP6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
CVE-2007-5227 | 1 Blackboard | 1 Blackboard Learning And Community Post Systems | 2010-08-30 | N/A |
Multiple cross-site scripting (XSS) vulnerabilities in messaging/course/composeMessage.jsp in BlackBoard Learning System 6.3.1.593 and earlier in BlackBoard Academic Suite allow remote attackers to inject arbitrary web script or HTML via the (1) subject_t and (2) body_text parameters. NOTE: vector 2 requires bypassing a client-side security mechanism that attempts to block XSS sequences. | ||||
CVE-2000-0605 | 1 Blackboard | 1 Courseinfo | 2008-09-10 | N/A |
Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords. | ||||
CVE-2002-1007 | 1 Blackboard | 1 Blackboard | 2008-09-05 | N/A |
Cross-site scripting vulnerabilities in Blackboard 5 allow remote attackers to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInfo.cgi, or (3) the Message parameter in index.cgi. |