CVE-2008-3753

Name of the Vulnerable Software and Affected Versions YourFreeWorld Programs Rating Script (affected versions not specified)

Description A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the id parameter in the details.php file.

Recommendations For YourFreeWorld Programs Rating Script, consider restricting access to the details.php file or validating and sanitizing the id parameter to prevent SQL injection attacks. As a temporary workaround, avoid using the id parameter in the details.php file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.