CVE-2022-29637
CVE-2022-29637 affects Mindoc v2.1-beta.5, where an arbitrary file upload vulnerability in the Unzip/ZIP handling allows an attacker to execute arbitrary commands through a crafted Zip file. Multiple sources (Veracode and Snyk entries referencing Mindoc’s unzip/ziptil code paths) describe the iss...