Contao CMS through 3.2.4 has PHP Object Injection Vulnerabilities
Published January 8, 2020.
Contao Contao CMS
