[CRITICAL] Magento executes code via the API File Option Upload Extension

PKSA-2kzy-spch-8dtk CVE-2021-36042 GHSA-6cwv-wj7v-73xp

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub