CVE-2015-3431

Pydio (formerly AjaXplorer) before 6.0.7 allows remote attackers to execute arbitrary commands via unspecified vectors, aka "Pydio OS Command Injection Vulnerabilities." > MITRE Terms of Use apply – see LICENSE‑MITRE.txt