Comment 2 for bug 885167

This isn't because of the other bug although the fact that it can be exploited when traffic is in the clear is significant.

It would seem to me that the main issue is that an attacker making this call (either a malicious user or a man-in-the-middle) can perform a path traversal because get_contents_to_filename doesn't validate strings correctly.