← back
CVE-2002-1007

CVE-2002-1007

EPSS 2.8%
Cross-site scripting vulnerabilities in Blackboard 5 allow remote attackers to execute arbitrary web script via (1) the course_id parameter in a link to login.pl, (2) the CTID parameter in ProcessInfo.cgi, or (3) the Message parameter in index.cgi.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21588unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-07/0005.htmlhttp://www.iss.net/security_center/static/9467.phphttp://www.securityfocus.com/bid/5137