[CRITICAL] Magento executes code via the API File Option Upload Extension

PKSA-9d3t-ck81-vgdm CVE-2021-36042 GHSA-6cwv-wj7v-73xp

Affected package: magento/community-edition

Affected version: <2.3.7-p1|=2.3.7|>=2.4.2-p1,<2.4.2-p2|=2.4.2

Reported by:
GitHub