CVE-2006-5030

Publication date

2006-09-27 23:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in modules/messages/index.php in exV2 2.0.4.3 and earlier allows remote authenticated users to execute arbitrary SQL commands via the sort parameter.