CVE-2025-55200 | BigBlueButton up to 3.0.12 Shared Notes Page Username cross site scripting (GHSA-9jv9-cjrm-grj2)

A vulnerability described as problematic has been identified in BigBlueButton up to 3.0.12. Impacted is an unknown function of the component Shared Notes Page. Such manipulation of the argument Username leads to cross site scripting.

This vulnerability is traded as CVE-2025-55200. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More