CVE-2007-4809 in Online Fantasy Football Leagueinfo

Summary

Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League (OFFL) 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOC_ROOT parameter to (1) lib/functions.php or (2) lib/header.php.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

09/11/2007

Disclosure

09/11/2007

Moderation

VulDB entry created

Entries

VDB-85776 (2)

CPE

ready

CWE

CWE-94 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.84109

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4809
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4809
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4809/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!