Description
The COM_CHANGE_USER command in MySQL 3.x before 3.23.54, and 4.x to 4.0.6, allows remote attackers to execute arbitrary code via a long response.
Remediation
References
Related Vulnerabilities
WordPress Plugin Relevanssi-A Better Search Cross-Site Scripting (3.3.7.1)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5321)
WordPress Plugin Product Addons & Fields for WooCommerce Cross-Site Scripting (32.0.5)
WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (4.4.3)