Freeway is prone to multiple remote file-include and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input.
Freeway 188.8.131.52 is affected; other versions may also be vulnerable.
1. Multiple Remote/Local File Include
Local File Include vulnerability found in script includes/events_application_top.php
2. Linked XSS vulnerability