Thruk Monitoring Web Interface versions 3.06 and below are affected by a path traversal vulnerability.