CVE-2007-3686

Publication date

2007-07-11 17:00:00

Family

mitre

State

PUBLISHED

Description

CRLF injection vulnerability in db.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTP_REFERER parameter.