Afian is an application that can add, in just minutes, powerful document management capabilities to any Web server. It
provides an Web-based interface for documents residing on the Web server's file system.
This software has a secutity hole allow attackers download any files if they know the path.
Vendor: afian.com
Vulnerabilities: Bypass + Fullpath Disclosure + Local File Inclusion.
Version: Unknown (maybe 2.x.x)
Demo: http://demo.afian.com
Exploit:
Google Dork: Afian document manager