EPSS
Percentile
49.8%
elgg/elgg is vulnerable to open redirection attacks. The vulnerability exists as the values of Referer and $url are not sanitized, allowing an attacker to redirect a victim to a malicious site.
Referer
$url
elgg.org/blog/view/2913744/security-release-elgg-11218-and-2311
github.com/Elgg/Elgg/commit/bd194d1baa89ca271411b74569bcd806b9fa62e6