Vulnerability-Lookup

Search criteria ⓘ Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

Full-Text Search

Vendor

Product

Assigner

Sources

Sort by

Order

Apply ordering (override relevance)

CVE-2006-4308 (GCVE-0-2006-4308)

Vulnerability from nvd – Published: 2006-08-23 19:00 – Updated: 2024-08-07 19:06

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/bid/19308	vdb-entryx_refsource_BID
	http://www.securityfocus.com/archive/1/444885/100…	mailing-listx_refsource_BUGTRAQ
	http://www.vupen.com/english/advisories/2006/3366	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/archive/1/444062/100…	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.securityfocus.com/archive/1/444116/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/21577	third-party-advisoryx_refsource_SECUNIA
	http://securitytracker.com/id?1016735	vdb-entryx_refsource_SECTRACK

Date Public ?

2006-08-22 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:06:06.871Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "19308",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/19308"
          },
          {
            "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
          },
          {
            "name": "ADV-2006-3366",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/3366"
          },
          {
            "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
          },
          {
            "name": "blackboard-multiple-xss(28537)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
          },
          {
            "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
          },
          {
            "name": "21577",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21577"
          },
          {
            "name": "1016735",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1016735"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-08-22T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "19308",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/19308"
        },
        {
          "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
        },
        {
          "name": "ADV-2006-3366",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/3366"
        },
        {
          "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
        },
        {
          "name": "blackboard-multiple-xss(28537)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
        },
        {
          "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
        },
        {
          "name": "21577",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21577"
        },
        {
          "name": "1016735",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1016735"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4308",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "19308",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/19308"
            },
            {
              "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
            },
            {
              "name": "ADV-2006-3366",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/3366"
            },
            {
              "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
            },
            {
              "name": "blackboard-multiple-xss(28537)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
            },
            {
              "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
            },
            {
              "name": "21577",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/21577"
            },
            {
              "name": "1016735",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1016735"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-4308",
    "datePublished": "2006-08-23T19:00:00.000Z",
    "dateReserved": "2006-08-23T00:00:00.000Z",
    "dateUpdated": "2024-08-07T19:06:06.871Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2006-4308 (GCVE-0-2006-4308)

Vulnerability from cvelistv5 – Published: 2006-08-23 19:00 – Updated: 2024-08-07 19:06

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/bid/19308	vdb-entryx_refsource_BID
	http://www.securityfocus.com/archive/1/444885/100…	mailing-listx_refsource_BUGTRAQ
	http://www.vupen.com/english/advisories/2006/3366	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/archive/1/444062/100…	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.securityfocus.com/archive/1/444116/100…	mailing-listx_refsource_BUGTRAQ
	http://secunia.com/advisories/21577	third-party-advisoryx_refsource_SECUNIA
	http://securitytracker.com/id?1016735	vdb-entryx_refsource_SECTRACK

Date Public ?

2006-08-22 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T19:06:06.871Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "19308",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/19308"
          },
          {
            "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
          },
          {
            "name": "ADV-2006-3366",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/3366"
          },
          {
            "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
          },
          {
            "name": "blackboard-multiple-xss(28537)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
          },
          {
            "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
          },
          {
            "name": "21577",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/21577"
          },
          {
            "name": "1016735",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1016735"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-08-22T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "19308",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/19308"
        },
        {
          "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
        },
        {
          "name": "ADV-2006-3366",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/3366"
        },
        {
          "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
        },
        {
          "name": "blackboard-multiple-xss(28537)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
        },
        {
          "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
        },
        {
          "name": "21577",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/21577"
        },
        {
          "name": "1016735",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1016735"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4308",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote attackers to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) malformed javascript URIs in various HTML tags when posting to the Discussion Board."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "19308",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/19308"
            },
            {
              "name": "20060828 Re: Re: BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444885/100/0/threaded"
            },
            {
              "name": "ADV-2006-3366",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/3366"
            },
            {
              "name": "20060822 BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444062/100/0/threaded"
            },
            {
              "name": "blackboard-multiple-xss(28537)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28537"
            },
            {
              "name": "20060823 Re: BlackBoard Multiple Vulnerabilities (XSS)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/444116/100/0/threaded"
            },
            {
              "name": "21577",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/21577"
            },
            {
              "name": "1016735",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1016735"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-4308",
    "datePublished": "2006-08-23T19:00:00.000Z",
    "dateReserved": "2006-08-23T00:00:00.000Z",
    "dateUpdated": "2024-08-07T19:06:06.871Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Search criteria ⓘ Use this form to refine search results. Full-text search supports keyword queries with ranking and filtering. You can combine vendor, product, and sources to narrow results. Enable “Apply ordering” to sort by date instead of relevance.

2 vulnerabilities found for blackboard_learning_and_community_portal_suite by blackboard

CVE-2006-4308 (GCVE-0-2006-4308)

CVE-2006-4308 (GCVE-0-2006-4308)

Search criteria ⓘ Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.