PKSA-254t-dtnb-4ybb Security Advisory
-
[MEDIUM] External URL injection through URL aliases - Moderately Critical - Open Redirect
PKSA-254t-dtnb-4ybb GHSA-vfgc-c76h-mwh4
Affected package: drupal/core
Affected version: >=7.0,<7.60|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.5.0|>=8.5.0,<8.5.8|>=8.6.0,<8.6.2
Reported by:
FriendsOfPHP/security-advisories, GitHub