[HIGH] Craft CMS vulnerable to Remote Code Execution via validatePath bypass

PKSA-cdfq-1syy-3hcn CVE-2023-40035 GHSA-44wr-rmwq-3phw

Affected package: craftcms/cms

Affected version: >=3.0.0,<=3.8.14|>=4.0.0-RC1,<=4.4.14

Reported by:
GitHub