Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to bypass intended access restrictions and modify settings via unspecified vectors, a different vulnerability than CVE-2015-2952 and CVE-2015-2953.
http://www.securityfocus.com/bid/75078
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000083