Gentoo Linux Security Advisory GLSA 200701-11 – Kronolith contains a mistake in lib/FBView.php where a raw, unfiltered string is used instead of a sanitized string to view local files. Versions less than 2.1.4 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/53769/glsa-200701-11.txt
Source: https://packetstormsecurity.com/files/53769/Gentoo-Linux-Security-Advisory-200701-11.html