Vulnerabilities > Jeuxflash > Jeuxflash Module > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-09-17	CVE-2007-4922	SQL Injection vulnerability in multiple products SQL injection vulnerability in play.php in the jeuxflash 1.0 module for KwsPHP allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a play ac action to index.php. network low complexity jeuxflash kwsphp CWE-89	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.