[MEDIUM] Craft CMS vulnerable to potential information disclosure via unchecked asset relocation

PKSA-yj3g-znh5-93sd CVE-2025-68436 GHSA-53vf-c43h-j2x9

Affected package: craftcms/cms

Affected version: >=4.0.0-RC1,<=4.16.16|>=5.0.0-RC1,<=5.8.20

Reported by:
GitHub