Description
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
Remediation
References
Related Vulnerabilities
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371)
WordPress Plugin WP Plugin Manager (WPPM) Cross-Site Scripting (1.6.4.b)
XWiki Improper Encoding or Escaping of Output Vulnerability (CVE-2023-45135)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4583)
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2005-0004)