KorWeblog suffers from a directory traversal vulnerability that enables malicious attackers to access files and include malicious php files. Versions 1.6.2-cvs and below are susceptible.
dfd299c99981ec960300f24328bfeb043fe798ab0aaf68b62781b852e862fae7