BigBlueButton versions lower than 2.2.4 have a LFI vulnerability allowing access to sensitive files. π¨
CVE-2020-12112 π¨ BigBlueButton versions lower than 224 have a LFI vulnerability allowing access to sensitive files Story π During a distance learning course on a BigBlueButton instance a student in my class shared my teacher's slide presentation link and I noticed that the file name was included in the URL Student: "No need to write notes, I've got the