CVE-2008-5953
Directory traversal vulnerability in KTP Computer Customer Database KTPCCD CMS, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the p parameter to the default URI...