Security Advisories - xpressengine/xpressengine - Packagist

xpressengine/xpressengine Security Advisories for 3.0.0-rc.5 (1)

[CRITICAL] XpressEngine vulnerable to Unrestricted Upload of File with Dangerous Type

PKSA-rkxv-brsr-yzfb CVE-2021-26642 GHSA-8r5j-22j5-w4cm

Affected version: <3.0.15

Reported by:
GitHub