Description elgg is vulnerable to Authorization Bypass Through User-Controlled Key Remediation References CVE-2021-3964 Related Vulnerabilities WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress PHP Object Injection (3.6.12) WordPress Plugin ActiveCampaign-Forms, Site Tracking, Live Chat Unspecified Vulnerability (5.7) Oracle Database Server CVE-2006-1870 Vulnerability (CVE-2006-1870) WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.10) Oracle JRE CVE-2020-2755 Vulnerability (CVE-2020-2755) Severity Medium Classification CVE-2021-3964 CWE-639 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities