CVE-2005-4206

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to...

CVE-2005-4206

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to...

CVE-2005-4206

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to...

CVE-2005-4206

CVE-2005-4206 affects Blackboard Learning and Community Portal System (Academic Suite) versions before 6, via a modified url parameter to frameset.jsp that loads an external URL in a frame, enabling remote redirection and phishing-like page spoofing. The issue’s root cause is the insecure handlin...

PT-2005-4894 · Blackboard · Blackboard Learning/Community Portal System

Name of the Vulnerable Software and Affected Versions: Blackboard Learning and Community Portal System versions prior to 6 Description: The issue allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to "frameset.jsp", which loads the UR...

The most classic hack introductory textbook-vulnerability warning-the black bar safety net

The first section, hack the type and behavior of the To my understanding, the“hackers”generally should be divided into“positive”and“evil”Categories, the decent hackers rely on their own knowledge to help system administrators to identify system vulnerabilities and be improved, while the evil...

atutor151pl2.txt

ATutor 1.5.1pl2 SQL Injection / Remote commands execution software: site: http://www.atutor.ca/ description : "ATutor is an Open Source Web-based Learning Content Management System LCMS designed with accessibility and adaptability in mind." if magicquotesgpc off - SQL INJECTION vulnerable code in...

Denial and then when the“script kids”to become a real hacker! - Vulnerability warning-the black bar safety net

On hack how to make online with the n version. But mostly grandstanding. Look at this now, is I online can see the detailed tutorial. I believe you will certainly have the benefits. Transferred from: tsinghua bbs Basis: How to learn ·To have learning objectives ·Have a learning plan ·To have the...

Newcomers scratch contact of hacking knowledge learning method-vulnerability warning-the black bar safety net

Today there are many people ask me:“I read your article, but I'm new, Is there any learning method?” My answer is:“of course there Ah, but people and people are different, the method is their summary out, and my previous articles the noun are the same as me in learning based on their own experien...

ATutor 1.5.1 SQL Injection / Admin credentials disclosure / remote code execution

ATUTOR 1.5.1 possibly prior versions SQL INJECTION / ADMIN & USERS CREDENTIALS DISCLOSURE / INFORMATION DISCLOSURE / USER IMPERSONATION / REMOTE CODE EXECUTION software: site: http://www.atutor.ca/ description: "ATutor is an Open Source Web-based Learning Content Management System LCMS designed...

CVE-2002-1910

Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords reversible algorithm, which allows attackers to obtain passwords...

CVE-2002-1909

The CVE-2002-1909 entry documents that Click2Learn Ingenium Learning Management System (versions 5.1 and 6.1) stores the hashed administrative password in a config.txt file located under the htdocs directory, enabling remote attackers to obtain the admin password. The connected Red Hat advisory a...

claroline16.txt

Alphaprogrammer , Oilkarchack , DrCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS TeaM , alphaST , Shabgard Security Team , Emperor Hacking Team , Crouz Security Team & Simorgh-ev Security Team Config : please replace your address : $url = "http:///www.example.com"; Please replace yo...

[EXPL] Claroline E-Learning Application Remote SQL Injection (Exploit 2)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

[EXPL] Claroline E-Learning Application Remote SQL Injection

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Claroline E-Learning 1.6 - Remote Hash SQL Injection (2)

Claroline E-Learning 1.6 - Remote Hash SQL Injection 2 !/usr/bin/perl Claroline E-Learning Application Remote SQL Exploit K-C0d3r This tools and to consider only himself to educational purpose Bug discovered by Greetz to mZ, 2b TUBE, off, rikky, str0ke, x0n3-h4ck, MWC K-C0d3r use IO::Socket; sub...

Claroline e-Learning <= 1.6 Remote Hash SQL Injection Exploit (2)

Exploit for unknown platform in category web applications ================================================================= Claroline e-Learning \n"; print STDERR "Targets:\n1 - userInfo.php\n"; print STDERR "2 - exercisesdetails.php\n"; exit; if @ARGV 3 Usage; if @ARGV == 3 $host = @ARGV0; $path...

Claroline E-Learning 1.6 - Remote Hash SQL Injection (2)

!/usr/bin/perl Claroline E-Learning Application Remote SQL Exploit K-C0d3r This tools and to consider only himself to educational purpose Bug discovered by Greetz to mZ, 2b TUBE, off, rikky, str0ke, x0n3-h4ck, MWC K-C0d3r use IO::Socket; sub Usage print STDERR "Usage: KCcol-xpl.pl \n"; print STDE...

Claroline e-Learning &lt;= 1.6 Remote Hash SQL Injection Exploit

No description provided by source. ?php T r a p - S e t U n d e r g r o u n d H a c k i n g T e a m Vulnerable: Claroline E-Learning Application Exploit By : MHp0rtal Discovered By: Sieg Fried Gr33tz To == Alphaprogrammer , Oilkarchack , DrCephaleX , Str0ke And Iranian Hacking & Security Teams :...

Claroline e-Learning <= 1.6 Remote Hash SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================= Claroline e-Learning Alphaprogrammer , Oilkarchack , DrCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS TeaM , alphaST , Shabgard Security Team , Emperor Hacking Tea...