CVE-2007-5097
The vulnerability concerns Online Fantasy Football League (OFFL) version 0.2.6. It is a PHP remote file inclusion in lib/classes/offl_nflteam.php triggered via a URL parameter (DOC_ROOT), which could allow an attacker to execute arbitrary PHP code on the server. The issue is noted as disputed by ...