Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Masuga Design Subscribe
Filtered by product Unobtrusive Ajax Star Rating Bar
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3684 1 Masuga Design 1 Unobtrusive Ajax Star Rating Bar 2017-07-28 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in Unobtrusive Ajax Star Rating Bar before 1.2.0 allow remote attackers to execute arbitrary SQL commands via the (1) q and (2) t parameters in (a) db.php and (b) rpc.php.
CVE-2007-3685 1 Masuga Design 1 Unobtrusive Ajax Star Rating Bar 2017-07-28 2.6 LOW N/A
Cross-site scripting (XSS) vulnerability in rpc.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
CVE-2007-3686 1 Masuga Design 1 Unobtrusive Ajax Star Rating Bar 2017-07-28 7.5 HIGH N/A
CRLF injection vulnerability in db.php in Unobtrusive Ajax Star Rating Bar before 1.2.0 allows remote attackers to inject arbitrary HTTP headers and data via CRLF sequences in the HTTP_REFERER parameter.