imcat 4.4 allows remote malicious users to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI.
txjia imcat 4.4