CVE-2022-31064 – Stored Cross-Site Scripting in BigBlueButton.<\/p>\n
=========================<\/p>\n
Exploit Title: Stored Cross-Site Scripting (XSS) in BigBlueButton<\/p>\n
Product: BigBlueButton<\/p>\n
Vendor: BigBlueButton<\/p>\n
Vulnerable Versions: 2.3, <2.4.8, <2.5.0<\/p>\n
Tested Version: 2.4.7<\/p>\n
Advisory Publication: Jun 22, 2022<\/p>\n
Latest Update: Jun 22, 2022<\/p>\n
Vulnerability Type: Cross-Site Scripting [CWE-79]\n
CVE Reference: CVE-2022-31064<\/p>\n
CVSS Severity: High<\/p>\n
CVSS Score: CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:C\/C:L\/I:L\/A:N
\nImpact score: 7.2<\/p>\n
Credit: Rick Verdoes & Danny de Weille (Hackify | pentests.nl)
\n=========================<\/p>\n
I. BACKGROUND<\/p>\n
————————-
\nBigBlueButton is an open source web conferencing system designed for online meetings and online learning. BigBlueButton is a tool used by instructors and teachers, which helps them access to Learning Management Systems, engagement tools and analytics.<\/p>\n
II. VULNERABILITY
\n————————-
\nUsers in meetings with private chat enabled are vulnerable to a cross site scripting attack in affected versions. The attack occurs when the attacker (with a XSS payload in the name) starts a chat. in the victim’s client the JavaScript will be executed. This issue has been addressed in version 2.4.8 and 2.5.0. There are no known workarounds for this issue.<\/p>\n
III. Proof of Concept
\n————————-
\n<img x onerror=alert()><\/p>\n
IV. References
\n————————-
\nSecurity advisory https:\/\/pentests.nl\/pentest-blog\/stored-xss-in-bigbluebutton\/
\nPatched on BigBlueButton 2.5 (https:\/\/github.com\/bigbluebutton\/bigbluebutton\/pull\/15067)
\nPatched on BigBlueButton 2.4 (https:\/\/github.com\/bigbluebutton\/bigbluebutton\/pull\/15090)<\/p>\n","protected":false},"excerpt":{"rendered":"
CVE-2022-31064 – Stored Cross-Site Scripting in BigBlueButton. ========================= Exploit Title: Stored Cross-Site Scripting (XSS) in BigBlueButton Product: BigBlueButton Vendor: BigBlueButton Vulnerable Versions: 2.3, <2.4.8, <2.5.0 Tested Version: 2.4.7 Advisory Publication: Jun 22, 2022 Latest Update: Jun 22, 2022 Vulnerability Type: Cross-Site Scripting [CWE-79] CVE Reference: CVE-2022-31064 CVSS Severity: High CVSS Score: CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:C\/C:L\/I:L\/A:N Impact score: 7.2 …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-26372","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/26372","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=26372"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/26372\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=26372"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=26372"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=26372"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}