Cross-site scripting (XSS) vulnerability in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to inject arbitrary web script or HTML via the context parameter to announcement.pl, which is reflected in the resulting page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blackboard academic suite 6.2.3.23 |
||
blackboard academic suite 6.3.1.424 |
||
blackboard academic suite |