The network server of fceux 2.7.0 has a path traversal vulnerability, allowing malicious users to overwrite any files on the server without authentication by fake ROM.