Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.6 views

CVE-2022-31065

BigBlueButton is an open source web conferencing system. In affected versions an attacker can embed malicious JS in their username and have it executed on the victim's client. When a user receives a private chat from the attacker whose username contains malicious JavaScript, the script gets...

6.5CVSS6.7AI score0.00735EPSS
Exploits0References1
NVD
NVD
added 2022/06/27 8:15 p.m.28 views

CVE-2022-31065

BigBlueButton is an open source web conferencing system. In affected versions an attacker can embed malicious JS in their username and have it executed on the victim's client. When a user receives a private chat from the attacker whose username contains malicious JavaScript, the script gets...

6.5CVSS0.00735EPSS
Exploits0References3
CVE
CVE
added 2022/06/27 7:45 p.m.67 views

CVE-2022-31065

CVE-2022-31065 affects BigBlueButton prior to versions 2.4.8 and 2.5.0. The vulnerability allows an attacker to embed malicious JavaScript in their username, which is executed on the victim’s client when the attacker sends a private chat or when a notification of the attacker leaving the session ...

6.5CVSS6.2AI score0.00735EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/27 7:45 p.m.5 views

CVE-2022-31065 Cross site scripting vulnerability for private chat in bigbluebutton

BigBlueButton is an open source web conferencing system. In affected versions an attacker can embed malicious JS in their username and have it executed on the victim's client. When a user receives a private chat from the attacker whose username contains malicious JavaScript, the script gets...

6.5CVSS6.4AI score0.00735EPSS
Exploits0References3
Rows per page
Query Builder