Lucene search
MitreCVE-2007-4809HistorySep 11, 2007 - 6:17 p.m.
CVE-2007-4809
2007-09-1118:17:00
CWE-94
mitre
web.nvd.nist.gov
22
php
remote file inclusion
vulnerability
online fantasy football league
offl
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.114
Percentile
95.2%
Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League (OFFL) 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOC_ROOT parameter to (1) lib/functions.php or (2) lib/header.php.
Affected configurations
Node
online_fantasy_football_leagueofflMatch0.2.3
ORonline_fantasy_football_leagueofflMatch0.2.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| online_fantasy_football_league | offl | 0.2.3 | cpe:2.3:a:online_fantasy_football_league:offl:0.2.3:*:*:*:*:*:*:* |
| online_fantasy_football_league | offl | 0.2.6 | cpe:2.3:a:online_fantasy_football_league:offl:0.2.6:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-4809
2007-09-11 18:00:00
exploitdb
exploitdb
Online Fantasy Football League (OFFL) 0.2.6 - Remote File Inclusion
2007-09-07 00:00:00
nvd
nvd
CVE-2007-4809
2007-09-11 18:17:00
prion
prion
Remote file inclusion
2007-09-11 18:17:00
canvas
canvas
Immunity Canvas: OFFL_INCLUDE
2007-09-11 18:17:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.114
Percentile
95.2%
Related for CVE-2007-4809