The file editor in millicore allows files to be executed, as well as created. An attacker could use this flaw to compromise other users, or teams projects stored in source control managment of the RHMAP Core installation.
Acknowledgments: Name: Tomas Rzepka
This issue has been addressed in the following products: Red Hat Mobile Application Platform 4.5 Via RHSA-2017:2675 https://access.redhat.com/errata/RHSA-2017:2675
This issue has been addressed in the following products: Red Hat Mobile Application Platform 4.5 Via RHSA-2017:2674 https://access.redhat.com/errata/RHSA-2017:2674