Loïc Le Métayer

**Name of the Vulnerable Software and Affected Versions** Joomla! versions 2.5.0 through 3.10.6 Joomla! versions 4.0.0 through 4.1.0 **Description** An issue was discovered in Joomla! where inadequate validation of URLs could result in an invalid check of whether a redirect URL is internal or not. **Recommendations** For Joomla! versions 2.5.0 through 3.10.6, update to a version outside of this range to resolve the issue. For Joomla! versions 4.0.0 through 4.1.0, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting the use of URL redirects until a patch is available.