CVE-2015-5958

phpFileManager 0.9.8 allows remote attackers to execute arbitrary commands via a crafted URL.