CVE-2008-0431
CVE-2008-0431 affects IDMOS (aka Phoenix) 1.0, where the administrator/download.php handler is vulnerable to directory traversal via the fileName parameter (..). This allows remote attackers to read arbitrary files on the affected system. The issue is triggered by an invalid path input and result...