CuppaCMS is a content management system (CMS), and a file inclusion vulnerability exists in CuppaCMS version 1.0. The vulnerability stems from the fact that the url parameter in /alerts/alertConfigField.php does not effectively filter calls to local file resources, which could be exploited to read local files.