CVE-2004-1498

2004-12-31T05:00:00
ID CVE-2004-1498
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T02:55:00

Description

SQL injection vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary SQL commands via the messageToUserAccNum parameter.