Vulnerabilities > Jeuxflash
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-04-12 | CVE-2008-1759 | SQL Injection vulnerability in multiple products SQL injection vulnerability in the jeuxflash module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php, a different vector than CVE-2007-4922. | 7.5 |
| 2007-09-17 | CVE-2007-4922 | SQL Injection vulnerability in multiple products SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. | 6.5 |