CVE-2020-27602
CVE-2020-27602 (BigBlueButton) affects BigBlueButton versions prior to 2.2.7. The root cause is a lack of protection against separator injection in three parameters: meetingId, userId, and authToken. This vulnerability could enable unintended manipulation of identifiers and tokens due to insuffic...