Host-header issue

Open sternix opened this issue 2 years ago • 0 comments

Hi,

We have bbb server version BigBlueButton Server 2.6.15 (1423) Greenlight 3.1.0.2

We tested our servers for penetration tests,

They found a host header vulnerability

https://portswigger.net/web-security/host-header,

you can test your 2.6 bbb server with,

curl https://bbb.DOMAIN/ -H "X-Forwarded-Host: evil.com" | grep evil.com

<meta property="og:image" content="https://evil.com/assets/bbb_logo-.....png" />"

i fix the issue temporary with changing the file application_helper.rb

asset_url(asset_path) to asset_url(asset_path, host: "https://bbb.DOMAIN")

For your information, Best regards,

Dec 19 '23 12:12 sternix