CVE-2021-4072

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in packagist/elgg/elgg

Identifiers

CVE-2021-4072

Package Slug

packagist/elgg/elgg

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

elgg is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected Versions

All versions before 3.3.24

Solution

Upgrade to version 3.3.24 or above.

Last Modified

2022-01-04

source