CuppaCMS is a content management system (CMS). A code execution vulnerability exists in CuppaCMS v1.0, which stems from the email_outgoing parameter of the /Configuration.php file failing to properly filter the special elements of a constructed snippet. An attacker can exploit this vulnerability to cause arbitrary code execution.