Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openfreeway freeway 1.4.1.171 vulnerabilities and exploits
(subscribe to this query)
720
VMScore
CVE-2008-3770
Multiple directory traversal vulnerabilities in Freeway 1.4.1.171, when register_globals is enabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) includes/events_application_top.php; (2) english/acco...
Openfreeway Freeway 1.4.1.171
8 EDB exploits
383
VMScore
CVE-2008-3841
Cross-site scripting (XSS) vulnerability in admin/search_links.php in Freeway eCommerce 1.4.1.171 allows remote malicious users to inject arbitrary web script or HTML via the search_link parameter.
Openfreeway Freeway 1.4.1.171
605
VMScore
CVE-2008-3769
PHP remote file inclusion vulnerability in admin/create_order_new.php in Freeway 1.4.1.171, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the include_page parameter.
Openfreeway Freeway 1.4.1.171
668
VMScore
CVE-2008-6013
Multiple SQL injection vulnerabilities in Freeway prior to 1.4.3.210 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors involving the (1) advanced search result and (2) service resource pages.
Openfreeway Freeway 1.3
Openfreeway Freeway 1.2.0.113
Openfreeway Freeway 1.1.1.81
Openfreeway Freeway 1.0.59
Openfreeway Freeway
Openfreeway Freeway 1.1.1.80
Openfreeway Freeway 1.1.1.76
Openfreeway Freeway 1.0.25
Openfreeway Freeway 1.4.1.171
Openfreeway Freeway 1.4.0.171
Openfreeway Freeway 1.4.1
Openfreeway Freeway 1.4
Openfreeway Freeway 1.4.1.197
Openfreeway Freeway 1.3.0.142
Openfreeway Freeway 1.3.2.154
Openfreeway Freeway 1.3.1.147
Openfreeway Freeway 1.3.2.160
Openfreeway Freeway 1.3.1.142
Openfreeway Freeway 1.0.060
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started