CyberSec.Space Logo
Back to CVE Browser

CVE-2005-4338

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1900%
EPSS Percentile37.66th
PublishedDec 19, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to gain administrator privileges by setting the context parameter to "admin".

Affected Platforms (CPE)

πŸ“¦
Blackboard

Academic Suite

All versions
πŸ“¦
Blackboard

Academic Suite

= 6.2.3.23
πŸ“¦
Blackboard

Academic Suite

= 6.3.1.424

References & Advisories

πŸ”— http://www.ipomonis.com/advisories/Bb_6.zip
πŸ”— http://www.osvdb.org/21617
πŸ”— http://www.ipomonis.com/advisories/Bb_6.zip
πŸ”— http://www.osvdb.org/21617

Related Vulnerabilities

CVE-2005-43377.5

The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before...

CVE-2008-18836.8

The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly by clients, which makes it easie...

CVE-2005-42066.1

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote a...

CVE-2006-39146.0

Cross-site scripting (XSS) vulnerability in Blackboard Academic Suite 6.2.3.23 allows remote authenticated users to inject arbitra...