[CRITICAL] class.upload.php in verot.net omits .pht from the set of dangerous file extensions

PKSA-txjv-dtcf-9yxc CVE-2019-19634 GHSA-2gc7-w4hw-rr2m

Affected package: verot/class.upload.php

Affected version: >=2.0.0,<=2.0.4|<=1.0.3

Reported by:
GitHub