Vulnerabilities > Yourfreeworld

DATE CVE VULNERABILITY TITLE RISK
2008-08-21 CVE-2008-3751 SQL Injection vulnerability in Yourfreeworld Short URL and URL Tracker Script
SQL injection vulnerability in tr.php in YourFreeWorld Short Url & Url Tracker Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2008-08-21 CVE-2008-3750 SQL Injection vulnerability in Yourfreeworld URL Rotator Script
SQL injection vulnerability in tr.php in YourFreeWorld URL Rotator Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2008-08-21 CVE-2008-3749 SQL Injection vulnerability in Yourfreeworld Banner Management Script
SQL injection vulnerability in tr.php in YourFreeWorld Banner Management Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2008-08-20 CVE-2008-3725 SQL Injection vulnerability in Yourfreeworld AD Board Script
SQL injection vulnerability in trr.php in YourFreeWorld Ad Board Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2008-05-02 CVE-2008-2065 SQL Injection vulnerability in Yourfreeworld Jokes Site Script
SQL injection vulnerability in jokes.php in YourFreeWorld Jokes Site Script allows remote attackers to execute arbitrary SQL commands via the catagorie parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2008-04-23 CVE-2008-1919 SQL Injection vulnerability in Yourfreeworld Apartment Search Script
SQL injection vulnerability in listtest.php in YourFreeWorld Apartment Search Script allows remote attackers to execute arbitrary SQL commands via the r parameter.
network
low complexity
yourfreeworld CWE-89
7.5
2006-12-11 CVE-2006-6461 Remote Security vulnerability in Stylish Text Ads Script
tr1.php in Yourfreeworld Stylish Text Ads Script allows remote attackers to obtain the installation path via an invalid id parameter, which leaks the path in an error message.
network
low complexity
yourfreeworld
7.8
2006-05-22 CVE-2006-2510 HTML Injection vulnerability in YourFreeWorld Short Url & Url Tracker Script
Cross-site scripting (XSS) vulnerability in the URL submission form in YourFreeWorld.com Short Url & Url Tracker Script allows remote attackers to inject arbitrary web script or HTML via an unspecified form for submitting URLs.
network
yourfreeworld
6.8
2006-05-22 CVE-2006-2509 HTML Injection vulnerability in YourFreeWorld Short Url & Url Tracker Script
SQL injection vulnerability in login.php in YourFreeWorld.com Short Url & Url Tracker Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
yourfreeworld
7.5
2006-05-22 CVE-2006-2508 HTML Injection vulnerability in YourFreeWorld Stylish Text Ads Script
SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
network
low complexity
yourfreeworld
6.4