CVE-2007-3684

Publication date

2007-07-11 17:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in Unobtrusive Ajax Star Rating Bar before 1.2.0 allow remote attackers to execute arbitrary SQL commands via the (1) q and (2) t parameters in (a) db.php and (b) rpc.php.