CVE-2004-1498

Publication date

2005-02-19 05:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary SQL commands via the messageToUserAccNum parameter.