CVE-2011-1688
Directory traversal vulnerability in Best Practical Solutions RT 3.2.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allows remote attackers to read arbitrary files via a crafted HTTP request.
Date published : 2011-04-22
http://www.securityfocus.com/bid/47383
http://blog.bestpractical.com/2011/04/security-vulnerabilities-in-rt.html