PHP Use of Externally-Controlled Format String Vulnerability (CVE-2006-0200)
Description
Format string vulnerability in the error-reporting feature in the mysqli extension in PHP 5.1.0 and 5.1.1 might allow remote attackers to execute arbitrary code via format string specifiers in MySQL error messages.