Secunia Security Advisory – Mr.SQL has reported two vulnerabilities in Five Star Review Script, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/69362/sa31585.txt
Source: https://packetstormsecurity.com/files/69362/Secunia-Security-Advisory-31585.html