CVE-2006-4308
N/A
N/A
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/19308
- http://www.securityfocus.com/archive/1/444885/100/0/threaded
- http://www.vupen.com/english/advisories/2006/3366
- http://www.securityfocus.com/archive/1/444062/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28537
- http://www.securityfocus.com/archive/1/444116/100/0/threaded
- http://secunia.com/advisories/21577
- http://securitytracker.com/id?1016735
References
- http://www.securityfocus.com/bid/19308
- http://www.securityfocus.com/archive/1/444885/100/0/threaded
- http://www.vupen.com/english/advisories/2006/3366
- http://www.securityfocus.com/archive/1/444062/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28537
- http://www.securityfocus.com/archive/1/444116/100/0/threaded
- http://secunia.com/advisories/21577
- http://securitytracker.com/id?1016735
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.