This applies to Files that:
- require a file using a path not relative to the current directory
- contain a class that extends an autoloaded class
This class of security vulnerability is invalid/bogus.
- run their web server in a chrooted jail, or
- use bootstrap.php to relocate .php/.tpl files to a PIWIK_INCLUDE_PATH outside the public document root