[HIGH] ezsystems/ezpublish-legacy has a SQL injection in dfscleanup

PKSA-vrcj-tzjw-khtt CVE-2026-38739 GHSA-xg9x-h37w-h3r3

Affected package: ezsystems/ezpublish-legacy

Affected version: =2019.03

Reported by:
GitHub