What is CVE-2007-4809?

CVE-2007-4809 is a vulnerability in N/a. Published 2007-09-11.

Is CVE-2007-4809 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2007-4809

Multiple PHP remote file inclusion vulnerabilities in Online Fantasy Football League (OFFL) 0.2.6 allow remote attackers to execute arbitrary PHP code via a URL in the DOC_ROOT parameter to (1) lib/functions.php or (2) lib/header.php.

EPSS: 0.844 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

36944 (x_refsource_OSVDB, vdb-entry)
25596 (vdb-entry, x_refsource_BID)
26767 (x_refsource_SECUNIA, third-party-advisory)
offl-docroot-file-include(36529) (vdb-entry, x_refsource_XF)
4374 (exploit, x_refsource_EXPLOIT-DB)
36943 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2007-4809?: CVE-2007-4809 is a vulnerability in N/a. Published 2007-09-11.
Is CVE-2007-4809 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.