CVE-2007-4809 | Online Fantasy Football League OFFL 0.2.3/0.2.6 lib/header.php DOC_ROOT code injection (EDB-4374 / XFDB-36529)

10月 6, 2024
8:56 am

A vulnerability was found in Online Fantasy Football League OFFL 0.2.3/0.2.6 and classified as critical. This issue affects some unknown processing in the library lib/functions.php of the file lib/header.php. The manipulation of the argument DOC_ROOT leads to code injection.

The identification of this vulnerability is CVE-2007-4809. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2007-4809 | Online Fantasy Football League OFFL 0.2.3/0.2.6 lib/header.php DOC_ROOT code injection (EDB-4374 / XFDB-36529)

Elvescore.io

Recent Posts

CVE-2024-11852 – Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows) WordPress Unauthenticated Data Access Vulnerability

CVE-2024-12884 – Codezips E-Commerce Website SQL Injection

CVE-2024-51463 – IBM i SSRF

CVE-2024-51464 – IBM Navigator for i Access Bypass Vulnerability

CVE-2024-12883 – Code-projects Job Recruitment Cross Site Scripting

CVE-2024-12875 – Easy Digital Downloads WordPress Directory Traversal Vulnerability

CVE-2007-4809 | Online Fantasy Football League OFFL 0.2.3/0.2.6 lib/header.php DOC_ROOT code injection (EDB-4374 / XFDB-36529)

CVE-2007-4809 | Online Fantasy Football League OFFL 0.2.3/0.2.6 lib/header.php DOC_ROOT code injection (EDB-4374 / XFDB-36529)