Lullabot: >> Fivestar Module For Drupal >> 6.x-1.x Security Vulnerabilities
The Fivestar module 6.x-1.x before 6.x-1.20 for Drupal does not properly validate voting data, which allows remote attackers to manipulate voting averages via a negative value in the vote parameter.
CVSS Score
5.0
EPSS Score
0.004
Published
2012-08-14