BigBlueButton is an open source Web conferencing system from the BigBlueButton community. bigBlueButton has an authorization issue vulnerability that can be exploited by attackers to send messages to locked chats within a 5s grace period after lockdown settings take effect.