TongWeb is an application server of Beijing Eastcom Technology Co. Ltd. TongWeb has an arbitrary file download vulnerability, which can be exploited by attackers to obtain sensitive files on the server.