CVE-2014-5097

Multiple SQL injection vulnerabilities in Free Reprintables ArticleFR 3.0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter in a (1) get or (2) set action to rate.php.

Date published : 2014-08-22

http://www.securityfocus.com/bid/69307

http://www.securityfocus.com/archive/1/533183/100/0/threaded