CVE-2007-2427
pnFlashGames 1.5 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in index.php in the pnFlashGames 1.5 module for PostNuke allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Mehmet Ince · textwebappsphp
https://www.exploit-db.com/exploits/3813
References (6)
Scores
EPSS
0.0154
EPSS Percentile
81.1%
Classification
Status
draft
Affected Products (1)
pnflashgames/pnflashgames
Timeline
Published
May 02, 2007
Tracked Since
Feb 18, 2026