CVE-2021-36041
CVE-2021-36041 affects Magento Commerce; versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier), and 2.3.7 (and earlier) are vulnerable to improper input validation. An attacker with admin privileges can upload a crafted file in the pub/media directory to achieve remote code execution. Documented i...