Moderate severityNVD Advisory· Published Dec 1, 2021· Updated Aug 3, 2024
Authorization Bypass Through User-Controlled Key in elgg/elgg
CVE-2021-3964
Description
elgg is vulnerable to Authorization Bypass Through User-Controlled Key
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
elgg/elggPackagist | < 3.3.22 | 3.3.22 |
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-gwpx-q2h9-wxgxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3964ghsaADVISORY
- github.com/elgg/elgg/commit/d9fcad76ee380ea17edd61d13d0f87828ea3f744ghsax_refsource_MISCWEB
- huntr.dev/bounties/a4df45d6-b739-4299-967f-c960b569383aghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.