CVE-2006-3177

Name of the Vulnerable Software and Affected Versions The Bible Portal Project versions 2.12 and earlier

Description A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the destination parameter in the Admin/rtf parser.php file.

Recommendations For versions 2.12 and earlier, update to a version later than 2.12 to resolve the issue. As a temporary workaround, consider restricting access to the Admin/rtf parser.php file to minimize the risk of exploitation. Avoid using the destination parameter in the affected file until the issue is resolved.