VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2015

CVE-2004-2015

Description

Cross-site scripting (XSS) vulnerability in WebCT Campus Edition allows remote attackers to inject arbitrary HTML or web script via (1) iframe, (2) img, or (3) object tags.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Webct/Webct6 versions
    cpe:2.3:a:webct:webct:campus_4.0:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:webct:webct:campus_4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:webct:webct:campus_4.0_sp3_hotfix_40833:*:*:*:*:*:*:*
    • cpe:2.3:a:webct:webct:campus_4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:webct:webct:campus_4.1.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:webct:webct:campus_4.1_sp2_hotfix_40832:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.