-
Notifications
You must be signed in to change notification settings - Fork 5.9k
Security: bigbluebutton/bigbluebutton
Security Navigation
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
Some bbb-record-core files installed with wrong file permissionGHSA-5966-9hw8-q96q published
Jun 27, 2024 by antobinaryLow -
API Additional Parameters ConsideredGHSA-4m48-49h7-f3c4 published
Jun 27, 2024 by antobinaryModerate -
Blind SSRF When Uploading Presentation (mitigation bypass)GHSA-h98v-2h8w-99c4 published
Oct 30, 2023 by antobinaryModerate -
Path Traversal – Reading Certain File ExtensionsGHSA-3qjg-229m-vq84 published
Oct 30, 2023 by antobinaryLow -
Unrestricted File UploadGHSA-w98f-6x8w-xhjc published
Oct 30, 2023 by antobinaryModerate -
Stored XSS at Guest LobbyGHSA-v6wg-q866-h73x published
Oct 30, 2023 by antobinaryModerate -
Blind SSRF When Uploading PresentationGHSA-3q22-hph2-cff7 published
Jun 26, 2023 by antobinaryModerate -
DoS via failed authToken validationGHSA-rgjp-3r74-g4cm published
Dec 15, 2022 by antobinaryModerate -
Ineffective user bansGHSA-wxjp-h88g-7fqg published
Dec 15, 2022 by antobinaryModerate -
Improper enforcement of moderator-only webcams settingGHSA-j5g3-f74q-rvfq published
Dec 15, 2022 by antobinaryModerate