Directory traversal vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) before 5.0.4 allows remote attackers to read or delete arbitrary files via unspecified vectors.Referenceshttp://www.redfsec.com/CVE-2013-6226http://archives.neohapsis.com/archives/bugtraq/2013-11/0043.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/88667http://www.securityfocus.com/bid/63647http://pyd.io/pydio-core-5-0-4
