PT-2022-17901 · Bigbluebutton · Bigbluebutton Greenlight
Name of the Vulnerable Software and Affected Versions: BigBlueButton Greenlight version 2.11.1 Description: The issue allows for XSS, where a threat actor could have a username containing a JavaScript payload. This payload gets executed in the browser of the victim in the "Share room access" dial...