Impact
Guest Lobby was vulnerable to XSS when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML.
Patches
Text sanitizing was added for lobby messages.
Patch on BigBlueButton 2.6.11: 304bc85
Patch on BigBlueButton 2.7.0-beta.3: #18392 (carried forward the fix from 2.6.11)
Workarounds
There are no workarounds. We recommend upgrading to a patched version of BigBlueButton.
Credits
devme4f
from VNPT-VCI who contacted us via huntr.dev and responsibly disclosed this vulnerability.
Impact
Guest Lobby was vulnerable to XSS when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML.
Patches
Text sanitizing was added for lobby messages.
Patch on BigBlueButton 2.6.11: 304bc85
Patch on BigBlueButton 2.7.0-beta.3: #18392 (carried forward the fix from 2.6.11)
Workarounds
There are no workarounds. We recommend upgrading to a patched version of BigBlueButton.
Credits
devme4f
from VNPT-VCI who contacted us via huntr.dev and responsibly disclosed this vulnerability.