Lucene search
China National Vulnerability DatabaseCNVD-2022-65311HistoryJun 30, 2022 - 12:00 a.m.
BigBlueButton Cross-Site Scripting Vulnerability (CNVD-2022-65311)
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.002 Low
EPSS
Percentile
59.6%
BigBlueButton is a Web conferencing system. versions prior to BigBlueButton 2.4.8 and prior to 2.5.0 have a cross-site scripting vulnerability that stems from the fact that users in private chat-enabled conferences are vulnerable to cross-site scripting attacks. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bigbluebutton bigbluebutton | lt | 2.5.0 | |
| bigbluebutton bigbluebutton | lt | 2.4.8 |
Related
zdt
zdt
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting Vulnerability
2022-07-01 00:00:00
prion
prion
Cross site scripting
2022-06-27 20:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-31064
2022-06-27 20:15:08
osv
osv
CVE-2022-31064
2022-06-27 20:15:08
cve
cve
CVE-2022-31064
2022-06-27 20:15:08
packetstorm
packetstorm
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting
2022-07-01 00:00:00