CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-3678

Cross-site scripting (XSS) vulnerability in admin/search_links.php in Freeway before 1.4.2.197 allows remote attackers to inject arbitrary web script or HTML via the URL.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.6%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2008-3678

Damian Hickey » Freeway » Version: 1.0.60

cpe:2.3:a:damian_hickey:freeway:1.0.60
Damian Hickey » Freeway » Version: 1.1.0.76

cpe:2.3:a:damian_hickey:freeway:1.1.0.76
Damian Hickey » Freeway » Version: 1.1.1.80

cpe:2.3:a:damian_hickey:freeway:1.1.1.80
Damian Hickey » Freeway » Version: 1.2.0.113

cpe:2.3:a:damian_hickey:freeway:1.2.0.113
Damian Hickey » Freeway » Version: 1.3

cpe:2.3:a:damian_hickey:freeway:1.3
Damian Hickey » Freeway » Version: 1.3.1.147

cpe:2.3:a:damian_hickey:freeway:1.3.1.147
Damian Hickey » Freeway » Version: 1.3.2.154

cpe:2.3:a:damian_hickey:freeway:1.3.2.154
Damian Hickey » Freeway » Version: 1.4.1.170

cpe:2.3:a:damian_hickey:freeway:1.4.1.170
Damian Hickey » Freeway » Version: 1.4.1.171

cpe:2.3:a:damian_hickey:freeway:1.4.1.171

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-3678

Products

Pricing

Contact Us