Web File Browser 'act' Parameter File Download Vulnerability

Summary
This host is running with Web File Browser and is prone to file download vulnerability.
Impact
Successful exploitation could allow attackers to download and read arbitrary files on the affected application. Impact Level: Application
Solution
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
Insight
The flaw is due to input validation error in 'act' parameter in 'webFileBrowser.php', which allows attackers to download arbitrary files via a '../'(dot dot) sequences.
Affected
Web File Browser versions 0.4b14 and prior
References