CVE-2020-12112

Published April 23rd, 2020

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

5

MEDIUM

Affected

2

PROJECTS

Description

BigBlueButton before 2.2.5 allows remote attackers to obtain sensitive files via Local File Inclusion.

bigbluebutton/bigbluebutton

A complete web conferencing system for virtual classes and more!

GitHub

9.17K

tchenu/CVE-2020-12112

BigBlueButton versions lower than 2.2.4 have a LFI vulnerability allowing access to sensitive files. 🚨

GitHub

14