CVE-2005-3550
CVE-2005-3550 affects toendaCMS prior to 0.6.2, where the admin.php engine allows directory traversal via the id_user parameter, enabling remote access to arbitrary files. Connected sources also document additional vulnerabilities in toendaCMS