Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blackboard vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0511
Blackboard Academic Suite 6.0 and previous versions does not properly clear session information when de-authenticating a user who is idle, which allows subsequent users to log in as the previous user and gain privileges. NOTE: the vendor has disputed this issue, saying that "...
Blackboard Blackboard 5.0.2
Blackboard Blackboard 6.0
Blackboard Blackboard 5.5
Blackboard Blackboard 5.5.1
Blackboard Blackboard 5.0
Blackboard Blackboard Academic Suite 6.0
5.4
CVSSv3
CVE-2020-9008
Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor.
Blackboard Blackboard Learn 9.1
Blackboard Blackboard Learn
6.1
CVSSv3
CVE-2017-18262
Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
Blackboard Blackboard Learn 9.1
Blackboard Blackboard Learn
NA
CVE-2006-4308
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote malicious users to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) ...
Blackboard Blackboard Learning And Community Portal Suite 6.2.3.23
Blackboard Blackboard 6.0
Blackboard Blackboard Learning And Community Portal Suite 6.0
Blackboard Vista 4
1 EDB exploit
5.4
CVSSv3
CVE-2021-36746
Blackboard Learn up to and including 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor.
Blackboard Blackboard Learn
5.4
CVSSv3
CVE-2021-36747
Blackboard Learn up to and including 9.1 allows XSS by an authenticated user via the Feedback to Learner form.
Blackboard Blackboard Learn
1 Github repository
NA
CVE-2004-1581
BlackBoard 1.5.1 allows remote malicious users to gain sensitive information via a direct request to (1) checkdb.inc.php, (2) admin.inc.php or (3) cp.inc.php, which reveals the path in a PHP error message.
Blackboard Blackboard 1.5.1
NA
CVE-2002-1007
Cross-site scripting vulnerabilities in Blackboard 5 allow remote malicious users to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInfo.cgi, or (3) the Message parameter in index.cgi.
Blackboard Blackboard 5.0
1 EDB exploit
NA
CVE-2005-4337
The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to bypass authentication and gain privileges as other users via a modified user_id parameter and a "/" in...
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite
Blackboard Academic Suite 6.3.1.424
NA
CVE-2005-4338
announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to gain administrator privileges by setting the context parameter to "admin".
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite
Blackboard Academic Suite 6.3.1.424
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »