Description elgg is vulnerable to Authorization Bypass Through User-Controlled Key Remediation References CVE-2021-3964 Related Vulnerabilities Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.5.15) WordPress Plugin Universal Star Rating Unspecified Vulnerability (1.10.3) WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Arbitrary File Deletion (3.1.4) WordPress Plugin ACF Frontend display Arbitrary File Upload (2.0.5) MySQL CVE-2013-3806 Vulnerability (CVE-2013-3806) Severity Medium Classification CVE-2021-3964 CWE-639 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities