diff --git a/CHANGELOG.md b/CHANGELOG.md
index f7fc0d214..b8578a114 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,9 @@
+# v1.7.42.4
+## mm/dd/2023
+
+2. [](#improved)
+   * Include `phar` in the list of `security.uploads_dangerous_extensions`
+
 # v1.7.42.3
 ## 07/18/2023
 
diff --git a/system/config/security.yaml b/system/config/security.yaml
index 2cc815fb5..54c7fc522 100644
--- a/system/config/security.yaml
+++ b/system/config/security.yaml
@@ -32,6 +32,7 @@ xss_dangerous_tags:
     - base
 uploads_dangerous_extensions:
     - php
+    - phar
     - html
     - htm
     - js