Blackboard » Courseinfo : Security Vulnerabilities, CVEs, CVSS score >= 2
BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl.
Max CVSS
7.5
EPSS Score
0.04%
Published
2000-07-18
Updated
2017-10-10
Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords.
Max CVSS
2.1
EPSS Score
0.05%
Published
2000-07-10
Updated
2008-09-10
2 vulnerabilities found