[CRITICAL] Magento vulnerable to a file upload restriction bypass

PKSA-9362-vs4v-j6vt CVE-2021-21014 GHSA-269w-pqc7-68q9

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub