Product
A critical vulnerability in Indico versions prior to 3.3.12 allows specially-crafted LaTeX snippets to achieve local file read or arbitrary code execution due to insufficient sanitization of LaTeX input, impacting systems where server-side LaTeX rendering is enabled.