Lucene search
K

6 matches found

NVD
NVD
added 2022/06/02 6:15 p.m.20 views

CVE-2022-26497

BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously...

5.4CVSS0.00806EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/02 6:15 p.m.4 views

CVE-2022-26497

BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously...

5.4CVSS5.9AI score0.00806EPSS
Exploits1References4
Prion
Prion
added 2022/06/02 6:15 p.m.12 views

Design/Logic Flaw

BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously...

3.5CVSS5.3AI score0.00806EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/06/02 12:0 a.m.4 views

PT-2022-17901 · Bigbluebutton · Bigbluebutton Greenlight

Name of the Vulnerable Software and Affected Versions: BigBlueButton Greenlight version 2.11.1 Description: The issue allows for XSS, where a threat actor could have a username containing a JavaScript payload. This payload gets executed in the browser of the victim in the "Share room access" dial...

5.4CVSS5.2AI score0.00806EPSS
Exploits1References7
OSV
OSV
added 2022/06/02 12:0 a.m.15 views

CVE-2022-26497

BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously...

5.4CVSS6.6AI score0.00806EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/06/02 12:0 a.m.22 views

CVE-2022-26497

BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously...

5.6AI score0.00806EPSS
Exploits1References3
Rows per page
Query Builder