Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-04-30T13:00:00
Updated: 2024-08-05T21:13:49.302Z
Reserved: 2018-04-26T00:00:00
Link: CVE-2017-18262
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-04-30T13:29:00.260
Modified: 2018-06-12T18:15:21.677
Link: CVE-2017-18262
Redhat
No data.