PHP remote file inclusion vulnerability in bn_smrep1.php in BinGoPHP News (BP News) 3.01 allows remote attackers to execute arbitrary PHP code via a URL in the bnrep parameter, a different vector than CVE-2006-4648 and CVE-2006-4649.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/31328http://osvdb.org/35898http://securitytracker.com/id?1017477
