CVE-2006-2791
Directory traversal vulnerability in index.php in iBoutique.MALL and possibly iBoutique allows remote attackers to read arbitrary files via ".." sequences in the function parameter.
Date published : 2006-06-02
http://www.securityfocus.com/archive/1/435164/100/0/threaded