Cross site scripting

2020-02-2518:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

25.0%

JSON

Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor.

CPENameOperatorVersion
blackboard_learneq9.1 q2-2017
blackboard_learneq9.1 q22017cumulativeupdate4
blackboard_learneq9.1 q22017cumulativeupdate3
blackboard_learneq9.1 q22017cumulativeupdate2
blackboard_learneq9.1 q22017cumulativeupdate1
blackboard_learneq9.1 q22017cumulativeupdate5
blackboard_learnlt9.1

Name	Operator	Version
blackboard_learn	eq	9.1 q2-2017
blackboard_learn	eq	9.1 q22017cumulativeupdate4
blackboard_learn	eq	9.1 q22017cumulativeupdate3
blackboard_learn	eq	9.1 q22017cumulativeupdate2
blackboard_learn	eq	9.1 q22017cumulativeupdate1
blackboard_learn	eq	9.1 q22017cumulativeupdate5
blackboard_learn	lt	9.1

References

blackboard.com

github.com/kyletimmermans/blackboard-xss/blob/master/CVE-2020-9008.md

0.001 Low

EPSS

Percentile

25.0%

JSON

Related for PRION:CVE-2020-9008