Blackboard Academic Suite <= 6.3.1 Build 593 HTML Injection
Medium Nessus Network Monitor Plugin ID 4231
SynopsisThe remote host is vulnerable to an HTML injection attack.
DescriptionThe remote host is running Blackboard, a web-based academic software package that allows organizations to teach students remotely. This version of Blackboard is vulnerable to multiple HTML injection flaws. An attacker exploiting these flaws would need the ability to log in as a valid user. Successful exploitation would result in the attacker gaining confidential data from other Blackboard users.
SolutionUpgrade or patch according to vendor recommendations.