Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

MySQL CVE-2016-3477 Vulnerability (CVE-2016-3477)

Description

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser.

Remediation

References

Related Vulnerabilities

Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8124)

WordPress Plugin WP Photo Album Plus Unspecified Vulnerability (6.5.00)

Next.js URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-15242)

WordPress Plugin Booking Calendar Directory Traversal (7.0)

Joomla Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-11324)

Severity

High

Classification

CVE-2016-3477 CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities