CVE DATABASE / CVE-2005-4206
CVE-2005-4206
CVSS 6.1 · MEDIUM
Summary
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to appear to be part of a valid page.
CVSS 3.1 breakdown
| Base score | 6.1 (MEDIUM) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | REQUIRED |
| Scope | CHANGED |
| Confidentiality | LOW |
| Integrity | LOW |
| Availability | NONE |
Weakness type (CWE)
Affected products
Blackboard academic suite
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://secunia.com/advisories/17991
- http://www.ipomonis.com/advisories/Bb_6.zip
- http://www.osvdb.org/21618
- http://www.securityfocus.com/bid/15814
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23558
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.