Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-2015
CVE-2004-2015
Description
Cross-site scripting (XSS) vulnerability in WebCT Campus Edition allows remote attackers to inject arbitrary HTML or web script via (1) iframe, (2) img, or (3) object tags.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:webct:webct:campus_4.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:webct:webct:campus_4.0:*:*:*:*:*:*:*
- cpe:2.3:a:webct:webct:campus_4.0_sp3_hotfix_40833:*:*:*:*:*:*:*
- cpe:2.3:a:webct:webct:campus_4.1:*:*:*:*:*:*:*
- cpe:2.3:a:webct:webct:campus_4.1.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:webct:webct:campus_4.1_sp2_hotfix_40832:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.