CVE-2015-0934 Information

Description

Common LaTeX Service Interface (CLSI) before 0.1.3 as used in ShareLaTeX before 0.1.3 allows remote authenticated users to execute arbitrary code via ` (backtick) characters in a filename.

Reference

http://www.kb.cert.org/vuls/id/302668