Barry Nauta BRIM before 1.2.1 allows remote authenticated users to read information from other users via a modified URL.Referenceshttp://secunia.com/advisories/22454https://exchange.xforce.ibmcloud.com/vulnerabilities/29650http://sourceforge.net/forum/forum.php?forum_id=624172
