Free Simple Software

free_simple_software

Vendor: Dustincowell • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2010-4311 1Dustincowell 1Free Simple Software Apr 29, 2026 Nov 26, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Free Simple Software 1.0 stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information.
CVE-2010-4298 1Dustincowell 1Free Simple Software Apr 29, 2026 Nov 26, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id parameter in a download_now action to index.php.