exploitDog

CVE-2005-4338

Опубликовано: 19 дек. 2005

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to gain administrator privileges by setting the context parameter to "admin".

Ссылки

http://www.ipomonis.com/advisories/Bb_6.zip
Exploit
Vendor Advisory
http://www.osvdb.org/21617
http://www.ipomonis.com/advisories/Bb_6.zip
Exploit
Vendor Advisory
http://www.osvdb.org/21617

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:blackboard:academic_suite:*:*:*:*:*:*:*:*

cpe:2.3:a:blackboard:academic_suite:6.2.3.23:*:*:*:*:*:*:*

cpe:2.3:a:blackboard:academic_suite:6.3.1.424:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01172

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-w7pp-vj34-5798

github

почти 4 года назад

announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to gain administrator privileges by setting the context parameter to "admin".

EPSS

Процентиль: 78%

0.01172

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other