CVE-2007-2090
Cross-site scripting (XSS) vulnerability in index.php in TuMusika Evolution 1.6 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.
Date published : 2007-04-18
http://www.securityfocus.com/archive/1/465515/100/0/threaded