Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openfreeway freeway 1.4.1.171 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-3841
Cross-site scripting (XSS) vulnerability in admin/search_links.php in Freeway eCommerce 1.4.1.171 allows remote malicious users to inject arbitrary web script or HTML via the search_link parameter.
Openfreeway Freeway 1.4.1.171
605
VMScore
CVE-2008-3769
PHP remote file inclusion vulnerability in admin/create_order_new.php in Freeway 1.4.1.171, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the include_page parameter.
Openfreeway Freeway 1.4.1.171
720
VMScore
CVE-2008-3770
Multiple directory traversal vulnerabilities in Freeway 1.4.1.171, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) includes/events_application_top.php; (2) english/acco...
Openfreeway Freeway 1.4.1.171
8 EDB exploits
668
VMScore
CVE-2008-6013
Multiple SQL injection vulnerabilities in Freeway prior to 1.4.3.210 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors involving the (1) advanced search result and (2) service resource pages.
Openfreeway Freeway 1.4.0.171
Openfreeway Freeway 1.4.1
Openfreeway Freeway 1.0.59
Openfreeway Freeway 1.3.2.160
Openfreeway Freeway 1.1.1.80
Openfreeway Freeway 1.4
Openfreeway Freeway 1.3.1.142
Openfreeway Freeway 1.4.1.197
Openfreeway Freeway 1.3.2.154
Openfreeway Freeway 1.3
Openfreeway Freeway 1.4.1.171
Openfreeway Freeway
Openfreeway Freeway 1.3.1.147
Openfreeway Freeway 1.3.0.142
Openfreeway Freeway 1.0.25
Openfreeway Freeway 1.0.060
Openfreeway Freeway 1.1.1.76
Openfreeway Freeway 1.1.1.81
Openfreeway Freeway 1.2.0.113
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started