Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to bypass intended access restrictions and read files via unspecified vectors, a different vulnerability than CVE-2015-2952 and CVE-2015-2958.
http://www.securityfocus.com/bid/75073
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000078