BigBlueButton is an open source Web conferencing system from the BigBlueButton community. versions prior to BigBlueButton Greenlight 2.5.6 have a security vulnerability that stems from an allow HTTP header (host and source) attack, which can be exploited by an attacker to cause an account takeover.
CPE | Name | Operator | Version |
---|---|---|---|
bigbluebutton greenlight | lt | 2.5.6 |