Greenlight in BigBlueButton up to and including 2.2.28 places usernames in room URLs, which may represent an unintended information leak to users in a room, or an information leak to outsiders if any user publishes a screenshot of a browser window.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bigbluebutton bigbluebutton |