Vulnerabilities > CVE-2002-1007 - Cross-Site Scripting vulnerability in Blackboard 5.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
blackboard
exploit available
NVD
Published: 2002-10-04
Updated: 2008-09-05

Summary

Cross-site scripting vulnerabilities in Blackboard 5 allow remote attackers to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInfo.cgi, or (3) the Message parameter in index.cgi.

Vulnerable Configurations

Part Description Count
Application
Blackboard
1

Exploit-Db

descriptionBlackboard 5.0 Cross-Site Scripting Vulnerability. CVE-2002-1007. Webapps exploit for cgi platform
idEDB-ID:21588
last seen2016-02-02
modified2002-07-01
published2002-07-01
reporterBerend-Jan Wever
sourcehttps://www.exploit-db.com/download/21588/
titleBlackboard 5.0 - Cross-Site Scripting Vulnerability

References