Blackboard » Courseinfo : Security Vulnerabilities, CVEs,
BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl.
Max CVSS
7.5
EPSS Score
0.04%
Published
2000-07-18
Updated
2017-10-10
Blackboard CourseInfo 4.0 stores the local and SQL administrator user names and passwords in cleartext in a registry key whose access control allows users to access the passwords.
Max CVSS
2.1
EPSS Score
0.05%
Published
2000-07-10
Updated
2008-09-10
2 vulnerabilities found