[CRITICAL] Magento command injection vulnerability

PKSA-7t4x-z168-kw9z CVE-2020-9578 GHSA-724x-gqhv-9c5x

Affected package: magento/project-community-edition

Affected version: <=2.0.2

Reported by:
GitHub