Lucene search
K

116 matches found

Vulnrichment
Vulnrichment
added 2007/09/26 10:0 p.m.6 views

CVE-2007-5097

PHP remote file inclusion vulnerability in lib/classes/offlnflteam.php in Online Fantasy Football League OFFL 0.2.6 allows remote attackers to execute arbitrary PHP code via a URL in the DOCROOT parameter. NOTE: this issue is disputed by CVE because a FILE test protects offlnflteam.php against...

8AI score0.01395EPSS
Exploits1References2
Cvelist
Cvelist
added 2007/09/26 10:0 p.m.22 views

CVE-2007-5097

PHP remote file inclusion vulnerability in lib/classes/offlnflteam.php in Online Fantasy Football League OFFL 0.2.6 allows remote attackers to execute arbitrary PHP code via a URL in the DOCROOT parameter. NOTE: this issue is disputed by CVE because a FILE test protects offlnflteam.php against...

7.5AI score0.01395EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2007/09/26 12:0 a.m.5 views

PT-2007-6193 · Unknown · Online Fantasy Football League

Name of the Vulnerable Software and Affected Versions: Online Fantasy Football League OFFL version 0.2.6 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the DOC ROOT parameter in the lib/classes/offl nflteam.php file. However, it is noted that a FILE test...

9.8CVSS7.6AI score0.01395EPSS
Exploits1References4
canvas
canvas
added 2007/09/11 6:17 p.m.31 views

Immunity Canvas: OFFL_INCLUDE

Name| offlinclude ---|--- CVE| CVE-2007-4809 Exploit Pack| CANVAS Description| Online Fantasy Football League 0.2.6 Remote file inclusion Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Online Fantasy Football League CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4809 CVE...

7.5CVSS0.5AI score0.56351EPSS
Exploits2
Prion
Prion
added 2007/09/11 6:17 p.m.12 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League OFFL 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOCROOT parameter to 1 lib/functions.php or 2 lib/header.php...

7.5CVSS8.1AI score0.56351EPSS
Exploits2References6Affected Software1
NVD
NVD
added 2007/09/11 6:17 p.m.14 views

CVE-2007-4809

Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League OFFL 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOCROOT parameter to 1 lib/functions.php or 2 lib/header.php...

7.5CVSS7.6AI score0.56351EPSS
Exploits2References6
CVE
CVE
added 2007/09/11 6:0 p.m.39 views

CVE-2007-4809

Summary : OFFL 0.2.6 (Online Fantasy Football League) contains multiple PHP remote file inclusion vulnerabilities that allow an attacker to craft a URL via the DOC_ROOT parameter to include files (lib/functions.php or lib/header.php), resulting in arbitrary PHP code execution under the web server...

7.5CVSS7.6AI score0.56351EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2007/09/11 6:0 p.m.23 views

CVE-2007-4809

Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League OFFL 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOCROOT parameter to 1 lib/functions.php or 2 lib/header.php...

7.6AI score0.56351EPSS
Exploits2References6
seebug.org
seebug.org
added 2007/09/08 12:0 a.m.19 views

Online Fantasy Football League (OFFL) 0.2.6 RFI Vulnerabilities

No description provided by source. --------------------------------------------------------------- / | |\ / | / |/ | | |/ | | / | | | | | |/ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/09/08 12:0 a.m.34 views

online-rfi.txt

--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Multiple...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/09/07 12:0 a.m.18 views

Online Fantasy Football League (OFFL) 0.2.6 - Remote File Inclusion

Online Fantasy Football League OFFL 0.2.6 - Remote File Inclusion --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg...

0.1AI score
Exploits0
0day.today
0day.today
added 2007/09/07 12:0 a.m.12 views

Online Fantasy Football League (OFFL) 0.2.6 RFI Vulnerabilities

Exploit for unknown platform in category web applications =============================================================== Online Fantasy Football League OFFL 0.2.6 RFI Vulnerabilities ===============================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/09/07 12:0 a.m.33 views

Online Fantasy Football League (OFFL) 0.2.6 - Remote File Inclusion

--------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org Staffatinj3ct-itdotorg --------------------------------------------------------------- Multiple...

7AI score
Exploits0
NVD
NVD
added 2005/05/02 4:0 a.m.17 views

CVE-2005-1001

PHP-Nuke 7.6 allows remote attackers to obtain sensitive information via direct requests to 1 the Surveys module with the file parameter set to comments or 2 3D-Fantasy/theme.php, which leaks the full pathname of the web server in a PHP error message...

5CVSS6.3AI score0.01457EPSS
Exploits1References2
CVE
CVE
added 2005/04/07 4:0 a.m.46 views

CVE-2005-1001

PHP-Nuke 7.6 is affected by CVE-2005-1001, where remote attackers can obtain sensitive information. The vulnerability arises from direct requests to the Surveys module (file parameter set to comments) or to 3D-Fantasy/theme.php, which causes a PHP error message that leaks the full server pathname...

5CVSS6.7AI score0.01457EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2005/04/07 4:0 a.m.21 views

CVE-2005-1001

PHP-Nuke 7.6 allows remote attackers to obtain sensitive information via direct requests to 1 the Surveys module with the file parameter set to comments or 2 3D-Fantasy/theme.php, which leaks the full pathname of the web server in a PHP error message...

6.3AI score0.01457EPSS
Exploits1References2
Rows per page
Query Builder