Mirror Manager version 0.7.2 and older is vulnerable to remote code execution in the checkin code.