Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
6.1CVSS
6.3AI Score
0.001EPSS
The bb-auth-provider-cas authentication module within Blackboard Learn 2018-07-02 is susceptible to HTTP host header spoofing during Central Authentication Service (CAS) service ticket validation, enabling a phishing attack from the CAS server login page.
6.1CVSS
6.3AI Score
0.001EPSS
Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor.
5.4CVSS
5.3AI Score
0.001EPSS
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor.
5.4CVSS
5.1AI Score
0.001EPSS
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Feedback to Learner form.
5.4CVSS
5.1AI Score
0.001EPSS
Blackboard Learn 1.10.1 allows remote authenticated users to read unintended files by entering student credentials and then directly visiting a certain webapps/bbcms/execute/ URL. Note: The vendor disputes this stating this cannot be reproduced.
6.5CVSS
6.1AI Score
0.001EPSS