CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pnflashgames: >> Pnflashgames >> 2.5 Security Vulnerabilities

CVE-2008-2013

SQL injection vulnerability in index.php in the pnFlashGames 1.5 through 2.5 module for PostNuke, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a display action.

CVSS Score

6.8

EPSS Score

0.005

Published

2008-04-30

Page 1

Vulnerabilities

Vulnerable Software

Pnflashgames: >> Pnflashgames >> 2.5 Security Vulnerabilities

Products

Pricing

Contact Us