RSS   Vulnerabilities for 'Pnflashgames'   RSS

2008-04-29
 
CVE-2008-2013

CWE-89
 

 
SQL injection vulnerability in index.php in the pnFlashGames 1.5 through 2.5 module for PostNuke, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a display action.

 
2007-05-01
 
CVE-2007-2427

 

 
SQL injection vulnerability in index.php in the pnFlashGames 1.5 module for PostNuke allows remote attackers to execute arbitrary SQL commands via the cid parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top