OpenCATS v0.9.6 exists to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.
opencats opencats 0.9.6