Filter

Bigbluebutton BigbluebuttonPath Traversal

First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton through 2.2.28 uses Ghostscript for processing of uploaded EPS documents, and conseque…

First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId…

First published (updated )

BigBlueButton GreenlightBigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result…

8.8
First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton Unrestricted File Upload vulnerability

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Bigbluebutton BigbluebuttonThe installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the FreeSWITC…

8.4
First published (updated )

Bigbluebutton BigbluebuttonCross-site Scripting (XSS) - Generic in bigbluebutton/bigbluebutton

8.1
First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton through 2.2.28 uses STUN/TURN resources from a third party, which may represent an uni…

7.5
First published (updated )

Bigbluebutton BigbluebuttonInfoleak

7.5
First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton before 2.2.27 has an unsafe JODConverter setting in which LibreOffice document convers…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Bigbluebutton BigbluebuttonThe installation procedure in BigBlueButton before 2.2.28 (or earlier) exposes certain network servi…

7.5
First published (updated )

Bigbluebutton BigbluebuttonPath Traversal

7.5
First published (updated )

Bigbluebutton BigbluebuttonReDoS on endpoint html5client/useragent in BigBlueButton

7.5
First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton vulnerable to Insertion of Sensitive Information Into Sent Data

7.5
First published (updated )

Bigbluebutton BigbluebuttonIn BigBlueButton before 2.2.28 (or earlier), the client-side Mute button only signifies that the ser…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Bigbluebutton BigbluebuttonBigBlueButton before 2.3 does not implement LibreOffice sandboxing. This might make it easier for re…

First published (updated )

Bigbluebutton BigbluebuttonSSRF

First published (updated )

Bigbluebutton BigbluebuttonExposure of messages in BigBlueButton public chats

First published (updated )

Bigbluebutton BigbluebuttonCross site scripting in username that will trigger by sending chat

First published (updated )

Bigbluebutton BigbluebuttonCross site scripting vulnerability for private chat in bigbluebutton

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Bigbluebutton BigbluebuttonBlind SSRF When Uploading Presentation in BigBlueButton

First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton Stored Cross-site Scripting vulnerability at Guest Lobby

First published (updated )

BigBlueButton GreenlightXSS

First published (updated )

Bigbluebutton BigbluebuttonXSS

First published (updated )

Bigbluebutton BigbluebuttonXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Bigbluebutton BigbluebuttonBigBlueButton contains Response leaks in anonymous polls

First published (updated )

Bigbluebutton BigbluebuttonBigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass)

First published (updated )

BigBlueButton GreenlightXSS

First published (updated )

Bigbluebutton BigbluebuttonXSS

First published (updated )

Bigbluebutton Bigbluebuttonweb/controllers/ApiController.groovy in BigBlueButton before 2.2.29 lacks certain parameter sanitiza…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203