** DISPUTED ** Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the class. NOTE: Third-parties dispute the validity of this entry as a possible false positive during research.
References
Link | Resource |
---|---|
https://www.blackboard.com/teaching-learning/collaboration-web-conferencing/blackboard-collaborate | Product Vendor Advisory |
https://github.com/Lawyer-1/Turki/blob/main/CVE-2020-25902.md | Broken Link |
Configurations
Information
Published : 2021-03-02 05:15
Updated : 2021-04-01 07:36
NVD link : CVE-2020-25902
Mitre link : CVE-2020-25902
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
blackboard
- collaborate_ultra