CyberSec.Space Logo
Back to CVE Browser

CVE-2005-4337

HIGH
7.5
CVSS Severity Score
EPSS Score0.0200%
EPSS Percentile24.04th
PublishedDec 19, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to bypass authentication and gain privileges as other users via a modified user_id parameter and a "/" in the encoded_pw parameter.

Affected Platforms (CPE)

πŸ“¦
Blackboard

Academic Suite

All versions
πŸ“¦
Blackboard

Academic Suite

= 6.2.3.23
πŸ“¦
Blackboard

Academic Suite

= 6.3.1.424

References & Advisories

πŸ”— http://www.ipomonis.com/advisories/Bb_6.zip
πŸ”— http://www.osvdb.org/21616
πŸ”— http://www.ipomonis.com/advisories/Bb_6.zip
πŸ”— http://www.osvdb.org/21616

Related Vulnerabilities

CVE-2005-433810.0

announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions befor...

CVE-2008-18836.8

The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly by clients, which makes it easie...

CVE-2005-42066.1

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote a...

CVE-2006-39146.0

Cross-site scripting (XSS) vulnerability in Blackboard Academic Suite 6.2.3.23 allows remote authenticated users to inject arbitra...