[HIGH] EZSA-2020-001 Remote code execution in file uploads

PKSA-8zqw-67xm-djp1 GHSA-p9mp-vq4v-v5m5

Affected package: ezsystems/ezpublish-legacy

Affected version: >=2019.3.0,<2019.3.4.2|>=2017.12.0,<2017.12.7.2|>=5.4.0,<5.4.14.1

Reported by:
FriendsOfPHP/security-advisories, GitHub