A bypass exists for Desire2Learn/D2L Brightspace’s “Disable Right Click” option in the quizzing feature, which allows a quiz-taker to access print and copy functionality via the browser’s right click menu even when “Disable Right Click” is enabled on the quiz.
References
Link | Resource |
---|---|
https://github.com/Skotizo/CVE-2021-43129 | Exploit Third Party Advisory |
https://www.d2l.com/learning-management-system-lms/ | Vendor Advisory |
https://community.brightspace.com/s/article/retirement-notice-disable-right-click | Vendor Advisory |
Configurations
Information
Published : 2022-04-19 06:15
Updated : 2022-04-27 12:00
NVD link : CVE-2021-43129
Mitre link : CVE-2021-43129
JSON object : View
CWE
CWE-668
Exposure of Resource to Wrong Sphere
Products Affected
d2l
- brightspace