Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to list all available categories via a blank category_id parameter to category.pl. NOTE: it is not clear whether this information is sensitive or not, so this might not be an exposure.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blackboard academic suite |
||
blackboard academic suite 6.3.1.424 |
||
blackboard academic suite 6.2.3.23 |