Vulnerabilities (CVE)

Filtered by vendor Jeuxflash Subscribe
Filtered by product Jeuxflash Module
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-1759 2 Jeuxflash, Kwsphp 2 Jeuxflash Module, Kwsphp 2024-02-04 7.5 HIGH N/A
SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922.
CVE-2007-4922 2 Jeuxflash, Kwsphp 2 Jeuxflash Module, Kwsphp 2024-02-04 6.5 MEDIUM N/A
SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. NOTE: some details are obtained from third party information.