CVE-2008-3421
N/A
N/A
Summary
Multiple cross-site request forgery (CSRF) vulnerabilities in Blackboard Academic Suite 8.0.260.7 allow remote attackers to hijack the authentication of student users for requests that change configuration and enrollments via unspecified input to (1) update_module.jsp, (2) enroll_course.pl, and (3) unenroll.jsp.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id?1020559
- http://ceaseless.ws/bb-csrf/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43986
- http://secunia.com/advisories/31177
References
- http://www.securitytracker.com/id?1020559
- http://ceaseless.ws/bb-csrf/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43986
- http://secunia.com/advisories/31177
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.