Security Advisories - PKSA-x1cq-96j3-vfs9 - Packagist

PKSA-x1cq-96j3-vfs9 Security Advisory

[CRITICAL] eZ Publish Kernel and Legacy Unrestricted Upload of File with Dangerous Type

PKSA-x1cq-96j3-vfs9 CVE-2020-10806 GHSA-54p5-gxq6-j98g

Affected package: ezsystems/ezpublish-legacy

Affected version: >=2019,<2019.03.4.2|>=2017,<2017.12.7.2|<5.4.14.1

Reported by:
GitHub