CVE-2020-10806
The CVE-2020-10806 entry affects eZ Publish Kernel and eZ Publish Legacy, where remote attackers can execute arbitrary PHP code by uploading PHP files, unless the vhost config restricts to app.php execution. Affected versions include eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and 7.x...