CoreHTTP versions 0.5.3.1 and below suffer from a remote command execution vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/84213/corehttp.txt
Source: https://packetstormsecurity.com/files/84213/CoreHTTP-Command-Execution-Advisory.html