Secunia Security Advisory – A security issue has been discovered in Dev-Editor, which can be exploited by malicious users to bypass certain security restrictions. The problem is that it is possible to access files and directories outside the virtual root directory when the given path is a subset of the virtual root directory. Example: If the virtual root directory is /var/www/html/test1 then users can access /var/www/html/test10. The security issue has been confirmed in version 3.0. Prior versions may also be affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/41479/sa17537.txt
Source: https://packetstormsecurity.com/files/41479/Secunia-Security-Advisory-17537.html