Vulnerabilities

CVE-2020-29043

by Fred · 26/11/2020

An issue was discovered in BigBlueButton through 2.2.29. When at attacker is able to view an account_activations/edit?token= URI, the attacker can create an approved user account associated with an email address that has an arbitrary domain name.

Date published : 2020-11-26

http://packetstormsecurity.com/files/160239/BigBlueButton-2.2.29-E-mail-Validation-Bypass.html

https://cxsecurity.com/issue/WLB-2020110211

Similar

Tags: Cybersecurity Alert