Hello,

we are security researchers from Unicorn (https://unicorn.com/en/security) and we have identified a serious vulnerability that is exploitable from the position of a registered user. The vulnerability allows the Remote Command Execution, leading to full server takeover.

The details will be sent to [email protected] as requested.

Regards,

Marek Malcovský & Petr Pernikář