CVE-2008-2890
CVE-2008-2890 corresponds to multiple SQL injection vulnerabilities in Online Fantasy Football League (OFFL) versions up to 0.2.6. The flaws allow remote attackers to inject arbitrary SQL via three parameters: fflteam_id (teams.php), league_id (leagues.php), and player_id (players.php). The core ...