Cuppa CMS v1.0 exists to contain an arbitrary file deletion vulnerability via the unlink() function.
cuppacms cuppacms 1.0