Vulnerabilities > Blackboard > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-20 | CVE-2021-36747 | Cross-site Scripting vulnerability in Blackboard Learn Blackboard Learn through 9.1 allows XSS by an authenticated user via the Feedback to Learner form. | 3.5 |
| 2021-07-20 | CVE-2021-36746 | Cross-site Scripting vulnerability in Blackboard Learn Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor. | 3.5 |
| 2020-02-25 | CVE-2020-9008 | Cross-site Scripting vulnerability in Blackboard Learn 9.1 Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor. | 3.5 |
| 2010-09-07 | CVE-2010-3245 | Information Exposure vulnerability in Blackboard Transact Suite The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) database password in cleartext in (a) script and (b) batch (.bat) files, which allows local users to obtain sensitive information by reading a file. | 2.1 |
| 2000-07-10 | CVE-2000-0605 | Unspecified vulnerability in Blackboard Courseinfo 4.0 Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords. | 2.1 |