Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blackboard vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-4337
The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to bypass authentication and gain privileges as other users via a modified user_id parameter and a "/" in...
Blackboard Academic Suite
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
10
CVSSv2
CVE-2005-4338
announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to gain administrator privileges by setting the context parameter to "admin".
Blackboard Academic Suite
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
4.3
CVSSv2
CVE-2005-4339
Cross-site scripting (XSS) vulnerability in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to inject arbitrary web script or HTML via the context parameter to announcement.pl, whic...
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
Blackboard Academic Suite
4
CVSSv2
CVE-2005-4206
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a...
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
Blackboard Academic Suite
1 EDB exploit
5
CVSSv2
CVE-2005-4341
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to list all available categories via a blank category_id parameter to category.pl. NOTE: it is not clear whether this information is ...
Blackboard Academic Suite
Blackboard Academic Suite 6.3.1.424
Blackboard Academic Suite 6.2.3.23
6
CVSSv2
CVE-2006-3914
Cross-site scripting (XSS) vulnerability in Blackboard Academic Suite 6.2.3.23 allows remote authenticated users to inject arbitrary HTML or web script by bypassing client-side validation through disabling JavaScript when submitting an essay response, which has no server-side val...
Blackboard Blackboard Academic Suite 6.2.3.23
4.3
CVSSv2
CVE-2008-3421
Multiple cross-site request forgery (CSRF) vulnerabilities in Blackboard Academic Suite 8.0.260.7 allow remote malicious users to hijack the authentication of student users for requests that change configuration and enrollments via unspecified input to (1) update_module.jsp, (2) ...
Blackboard Blackboard Academic Suite 8.0.260.7
7.5
CVSSv2
CVE-2000-0627
BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl.
Blackboard Courseinfo Unix
Blackboard Courseinfo 4.0
5.8
CVSSv2
CVE-2018-13257
The bb-auth-provider-cas authentication module within Blackboard Learn 2018-07-02 is susceptible to HTTP host header spoofing during Central Authentication Service (CAS) service ticket validation, enabling a phishing attack from the CAS server login page.
Blackboard Blackboard Learn 2018-07-02
4.3
CVSSv2
CVE-2007-5227
Multiple cross-site scripting (XSS) vulnerabilities in messaging/course/composeMessage.jsp in BlackBoard Learning System 6.3.1.593 and previous versions in BlackBoard Academic Suite allow remote malicious users to inject arbitrary web script or HTML via the (1) subject_t and (2) ...
Blackboard Blackboard Learning And Community Post Systems 6.3.1.593
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »