漏洞标题
N/A
漏洞描述信息
在Blackboard Learning System 6、Blackboard Learning和Community Portal Suite 6.2.3.23以及Blackboard Vista 4中存在多个跨站点脚本(XSS)漏洞,允许远程攻击者通过(1)数据、(2)vbscript和(3)各种HTML标签中的未授权的JavaScript、VBScript或HTML来注入。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Blackboard Learning System/Blackboard Learning/Community Portal Suite 多个跨站脚本攻击(XSS)漏洞
漏洞描述信息
Blackboard Learning System 6,Blackboard Learning和Community Portal Suite 6.2.3.23版本中存在多个跨站脚本攻击(XSS)漏洞,远程攻击者通过各种HTML标签中的(1) data,(2) vbscript和 (3) 畸形的javascript URI,在提交到讨论区时注入任意Javascript,VBScript或HTML。
CVSS信息
N/A
漏洞类别
跨站脚本