Directory traversal vulnerability in index.php in Bytehoard 0.7 allows remote malicious users to read arbitrary files via a .. (dot dot) in the infolder parameter.
source: wwwsecurityfocuscom/bid/8850/info
Bytehoard is prone to directory traversal attacks This could potentially permit remote attackers to gain unauthorized access to sensitive files hosted on the system running the software
wwwexamplecom/bytehoard/indexphp?infolder=////
...