w-Agora Site parameter remote directory traversal flaw

Summary
The remote host is running w-agora, a web-based forum management software written in PHP. The remote version of this software is prone to directory traversal attacks. An attacker could send specially crafted URL to read arbitrary files on the remote system with the privileges of the web server process.
Solution
Upgrade to the newest version of this software