CVE-2005-1353

The forum.pl script allows remote attackers to read arbitrary files via a full pathname in the argument.