[HIGH] Magento arbitrary PHP code execution via the productData parameter

PKSA-t9w9-ghks-gx3y CVE-2015-6497 GHSA-j4fq-3fm7-wh5v

Affected package: magento/core

Affected version: <1.9.2.1

Reported by:
GitHub