2 matches found
CVE-2009-3965
SQL injection vulnerability in rating.php in New 5 star Rating 1.0 allows remote attackers to execute arbitrary SQL commands via the det parameter...
CVE-2009-3965
CVE-2009-3965 describes an SQL injection in rating.php of the application “New 5 star Rating” version 1.0, learnable via the det parameter. The underlying flaw enables remote attackers to execute arbitrary SQL commands, with the NVD noting a base score of 7.5 (HIGH) and network-exposed, low-compl...