📦 Manyfold

This vulnerability allows authenticated users to achieve remote code execution by uploading a ZIP file containing a file with shell metacharacters in its filename. The vulnerability affects self-hoste...

Manyfold versions before 0.133.0 are vulnerable to session hijacking due to cookie leakage in proxy caches. This allows attackers to steal user sessions and impersonate legitimate users. All self-host...