With the CVE number mentioned above a serious vulnerability in relation to the OpenWebIf has been reported. See CVE-2017-9807 for details. The vulnerability makes it possible to create, overwrite or change arbitrary files using a specially formulated web request. Every Enigma2 version with an installed OpenWebIf is impacted.
For those who still have their box open, connected to the internet without the use of a VPN: Please switch this off immediately, before your box is hacked!!!
The OpenWebIf team is working very hard to find a solution for this problem.