gem›flash_tool›CVE-2013-2513Remote code execution vulnerabilityIf files downloaded contain shell characters it's possible to execute code as the client user