[HIGH] Craft CMS vulnerable to potential authenticated Remote Code Execution via malicious attached Behavior

PKSA-hcvs-d728-5zyw CVE-2025-68455 GHSA-255j-qw47-wjh5

Affected package: craftcms/cms

Affected version: >=4.0.0-RC1,<=4.16.16|>=5.0.0-RC1,<=5.8.20

Reported by:
GitHub