Blackboard » Blackboard Learning And Community Post Systems : Security Vulnerabilities, CVEs, CVSS score >= 4
Multiple cross-site scripting (XSS) vulnerabilities in messaging/course/composeMessage.jsp in BlackBoard Learning System 6.3.1.593 and earlier in BlackBoard Academic Suite allow remote attackers to inject arbitrary web script or HTML via the (1) subject_t and (2) body_text parameters. NOTE: vector 2 requires bypassing a client-side security mechanism that attempts to block XSS sequences.
Max CVSS
4.3
EPSS Score
0.23%
Published
2007-10-05
Updated
2010-08-30
1 vulnerabilities found