Filter
Versions
2.4-alpha1
8
2.4-alpha2
8
2.4-beta1
7
2.4-beta2
7
2.4-beta3
7
2.4-beta4
7
2.2.0
6
2.4-rc1
6
2.4-rc3
6
2.4-rc4
6
2.4-rc5
6
2.2.28
4
2.4
3
2.5-alpha1
3
2.5-alpha2
3
2.5-alpha3
3
2.5-alpha4
3
2.5-alpha5
3
2.5-alpha6
3
2.5-beta1
3
2.2.29
2
2.3.0
2
2.4-rc2
2
2.4.9
2
2.5-beta2
2
2.5-rc.1
2
2.5-rc.2
2
2.5-rc.3
2
2.5-rc.4
2
2.5.18
2
2.6.0-alpha1
2
2.6.0-alpha2
2
2.6.0-alpha3
2
2.6.0-alpha4
2
2.7.0-alpha1
2
2.7.0-alpha2
2
2.7.0-alpha3
2
2.7.0-beta1
2
2.7.0-beta2
2
2.4-rc6
1
2.4-rc7
1
2.4.0
1
2.4.7
1
2.6.0
1
2.6.0-beta1
1
2.7.0-beta3
1
Bigbluebutton BigbluebuttonBigBlueButton through 2.2.28 uses Ghostscript for processing of uploaded EPS documents, and conseque…
9.8
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId…
9.8
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton Unrestricted File Upload vulnerability
8.8
First published (updated )
Bigbluebutton BigbluebuttonThe installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the FreeSWITC…
8.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Bigbluebutton BigbluebuttonCross-site Scripting (XSS) - Generic in bigbluebutton/bigbluebutton
8.1
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton through 2.2.28 uses STUN/TURN resources from a third party, which may represent an uni…
7.5
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton before 2.2.27 has an unsafe JODConverter setting in which LibreOffice document convers…
7.5
First published (updated )
Bigbluebutton BigbluebuttonThe installation procedure in BigBlueButton before 2.2.28 (or earlier) exposes certain network servi…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Bigbluebutton BigbluebuttonReDoS on endpoint html5client/useragent in BigBlueButton
7.5
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton vulnerable to Insertion of Sensitive Information Into Sent Data
7.5
First published (updated )
Bigbluebutton BigbluebuttonIn BigBlueButton before 2.2.28 (or earlier), the client-side Mute button only signifies that the ser…
6.5
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton before 2.3 does not implement LibreOffice sandboxing. This might make it easier for re…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Bigbluebutton BigbluebuttonExposure of messages in BigBlueButton public chats
6.5
First published (updated )
Bigbluebutton BigbluebuttonCross site scripting in username that will trigger by sending chat
6.5
First published (updated )
Bigbluebutton BigbluebuttonCross site scripting vulnerability for private chat in bigbluebutton
6.5
First published (updated )
Bigbluebutton BigbluebuttonBlind SSRF When Uploading Presentation in BigBlueButton
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Bigbluebutton BigbluebuttonBigBlueButton Stored Cross-site Scripting vulnerability at Guest Lobby
6.3
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton contains Response leaks in anonymous polls
5.7
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass)
5.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Bigbluebutton Bigbluebuttonweb/controllers/ApiController.groovy in BigBlueButton before 2.2.29 lacks certain parameter sanitiza…
5.3
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton through 2.2.28 records a video meeting despite the deactivation of video recording in …
5.3
First published (updated )
Bigbluebutton BigbluebuttonBigBlueButton before 2.2.28 (or earlier) does not set the secure flag for the session cookie in an h…
5.3
First published (updated )
Bigbluebutton BigbluebuttonLimited data exposure for shared external videos in BigBlueButton
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.