Directory traversal vulnerability in index.php in TxtBlog 1.0 Alpha allows remote malicious users to read arbitrary files via a .. (dot dot) in the m parameter.
txtblogcms txtblog 1.0