Product
bigbluebutton greenlight
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2022-36029
CVE-2022-36028
CVE-2022-31039
CVE-2022-26497
CVE-2020-27642
CVE-2020-26163
< 2.13.0
Greenlight is an end-user interface for BigBlueButton servers. Versions prior to 2.13.0 have an open redirect vulnerability in the
< 2.13.0
Greenlight is an end-user interface for BigBlueButton servers. Versions prior to 2.13.0 have an open redirect vulnerability in the
< 2.12.6
Greenlight is a simple front-end interface for your BigBlueButton server. In affected versions an attacker can view any room's set
all versions
BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets
all versions
A cross-site scripting (XSS) vulnerability exists in the 'merge account' functionality in admins.js in BigBlueButton Greenlight 2.
< 2.5.6
BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result in Account Takeover if a vict