SQL injection vulnerability in clic.php in the Partenaires module 1.5 for Nuked-Klan allows remote attackers to execute arbitrary SQL commands via the id parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/60933
http://securityreason.com/securityalert/8459