CVE-2022-36029 | BigBlueButton Greenlight up to 2.12.x Login Page return_to redirect

Posted by Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability was found in BigBlueButton Greenlight up to 2.12.x and classified as problematic. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument return_to leads to open redirect.

This vulnerability is handled as CVE-2022-36029. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2022-36029 | BigBlueButton Greenlight up to 2.12.x Login Page return_to redirect

Related Posts

CVE-2024-27454 | orjson up to 3.9.14 JSON Document orjson.loads recursion

CVE-2024-4685 | Campcodes Complete Web-Based School Management System 1.0 /view/exam_timetable.php exam cross site scripting

CVE-2024-6481 | Search & Filter Pro Plugin up to 2.5.17 on WordPress Setting cross site scripting

CVE-2024-23911 | DMG MORI Digital Cente IPv6/Cente IPv6 SNMPv2/Cente IPv6 SNMPv3 IPv6 NDP Packet length out-of-bounds