Directory traversal vulnerability in download.php in Phorum 3.4 through 3.4.2 allows remote attackers to read arbitrary files.Referenceshttp://www.securityfocus.com/bid/7569https://exchange.xforce.ibmcloud.com/vulnerabilities/12482http://securityreason.com/securityalert/3288http://www.securityfocus.com/archive/1/321310
