The exploit demonstrates a Remote File Inclusion (RFI) vulnerability in nuBuilder's report.php due to insecure handling of the $GLOBALS['StartingDirectory'] variable. It shows how an attacker can include a remote shell by manipulating the StartingDirectory parameter, bypassing register_globals settings.
Classification
Working Poc 95%
Target:
nuBuilder 10.04.x and lower
No auth needed
Prerequisites:
PHP configuration with allow_url_include enabled · Network access to the target server