Etherpad < 1.8.3 is affected by a denial of service in the import functionality. Upload of binary file to the import endpoint would crash the instance. Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22782 Reference (s):
- https://github.com/ether/etherpad-lite/issues/3825