CVE ID
Severity
7.2
Vulnerability Type
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
(CWE-78) 
Summary
A remote attacker with high privileges may use a writing file function to inject OS commands.