2008-08-26 14:06:00
mitre
PUBLISHED
SQL injection vulnerability in recommend.php in Five Star Review Script allows remote attackers to execute arbitrary SQL commands via the item_id parameter.