Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-7861)
Description
Insufficient server-side validation of user input could allow an attacker to bypass file upload restrictions in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.