Hyperion contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to the ls command not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../). This directory traversal attack would allow the attacker to access arbitrary files.
Upgrade to version 2.8.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.