Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openfreeway freeway 1.4.1.171 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-3770
Multiple directory traversal vulnerabilities in Freeway 1.4.1.171, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) includes/events_application_top.php; (2) english/acco...
Openfreeway Freeway 1.4.1.171
8 EDB exploits
4.3
CVSSv2
CVE-2008-3841
Cross-site scripting (XSS) vulnerability in admin/search_links.php in Freeway eCommerce 1.4.1.171 allows remote malicious users to inject arbitrary web script or HTML via the search_link parameter.
Openfreeway Freeway 1.4.1.171
6.8
CVSSv2
CVE-2008-3769
PHP remote file inclusion vulnerability in admin/create_order_new.php in Freeway 1.4.1.171, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the include_page parameter.
Openfreeway Freeway 1.4.1.171
7.5
CVSSv2
CVE-2008-6013
Multiple SQL injection vulnerabilities in Freeway prior to 1.4.3.210 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors involving the (1) advanced search result and (2) service resource pages.
Openfreeway Freeway 1.3
Openfreeway Freeway 1.2.0.113
Openfreeway Freeway 1.1.1.81
Openfreeway Freeway 1.0.59
Openfreeway Freeway
Openfreeway Freeway 1.1.1.80
Openfreeway Freeway 1.1.1.76
Openfreeway Freeway 1.0.25
Openfreeway Freeway 1.4.1.171
Openfreeway Freeway 1.4.0.171
Openfreeway Freeway 1.4.1
Openfreeway Freeway 1.4
Openfreeway Freeway 1.4.1.197
Openfreeway Freeway 1.3.0.142
Openfreeway Freeway 1.3.2.154
Openfreeway Freeway 1.3.1.147
Openfreeway Freeway 1.3.2.160
Openfreeway Freeway 1.3.1.142
Openfreeway Freeway 1.0.060
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started