CVE-2006-0200

Format string vulnerability in the error-reporting feature in the mysqli extension in PHP 5.1.0 and 5.1.1 might allow remote attackers to execute arbitrary code via format string specifiers in MySQL error messages.

Date published : 2006-01-13

http://www.securityfocus.com/bid/16219

http://www.securityfocus.com/archive/1/421705/100/0/threaded