exploitDog

CVE-2006-4308

Опубликовано: 23 авг. 2006

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:blackboard:blackboard:6.0:*:*:*:*:*:*:*

cpe:2.3:a:blackboard:blackboard_learning_and_community_portal_suite:6.0:*:*:*:*:*:*:*

cpe:2.3:a:blackboard:blackboard_learning_and_community_portal_suite:6.2.3.23:*:*:*:*:*:*:*

cpe:2.3:a:blackboard:vista:4:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00962

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-46h9-5vh7-qx7w

github

почти 4 года назад

Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.

EPSS

Процентиль: 76%

0.00962

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79