Description
sql_parse.cc in MySQL 4.0.x up to 4.0.26, 4.1.x up to 4.1.18, and 5.0.x up to 5.0.20 allows remote attackers to obtain sensitive information via a COM_TABLE_DUMP request with an incorrect packet length, which includes portions of memory in an error message.
Remediation
References
Related Vulnerabilities
WordPress Plugin Link Library SQL Injection (5.9.13.26)
Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2022-0538)
WordPress Plugin Download Shortcode Arbitrary File Disclosure (0.1)
WordPress Plugin BackupBuddy Information Disclosure (2.2.28)
OpenSSL Improper Input Validation Vulnerability (CVE-2016-6305)