Description
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2020-14825 Vulnerability (CVE-2020-14825)
WordPress Plugin MDTF-Wordpress Meta Data & Taxonomies Filter Cross-Site Request Forgery (2.2.7.2)
WordPress Plugin WebLibrarian SQL Injection (3.5.4)
WordPress Plugin Custom Contact Forms Security Bypass (5.1.0.3)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899)