Security Advisories - PKSA-254t-dtnb-4ybb - Packagist

PKSA-254t-dtnb-4ybb Security Advisory

[MEDIUM] External URL injection through URL aliases - Moderately Critical - Open Redirect

PKSA-254t-dtnb-4ybb GHSA-vfgc-c76h-mwh4

Affected package: drupal/core

Affected version: >=7.0,<7.60|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.5.0|>=8.5.0,<8.5.8|>=8.6.0,<8.6.2

Reported by:
FriendsOfPHP/security-advisories, GitHub