Remote file inclusion vulnerability

[alxbrd]

Unescaped POST data is written to the disk in this file:

clipbucket/upload/admin_area/charts/ofc-library/ofc_upload_image.php

[oradwell]

Details about the vulnerability: http://www.securityfocus.com/bid/37314

Removing the file cause no problems since it's not being referenced anywhere else in the codebase