This page aggregates publicly disclosed CVE and security risk information related to freedville, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-0828 | QuoteBook stores quotes.inc under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information, including user credentials, via a direct request. | [email protected] | 5.0 | 6.95% | 2009-03-05 | 2026-04-23 |
| CVE-2009-0827 | PollHelper stores poll.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request. | [email protected] | 5.0 | 5.90% | 2009-03-05 | 2026-04-23 |
| CVE-2009-0826 | BlogHelper stores common_db.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request. | [email protected] | 5.0 | 5.90% | 2009-03-05 | 2026-04-23 |