Description

The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.

Remediation

References

CVE-2007-2692

Related Vulnerabilities

osCommerce Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-27975)

WordPress Plugin Advanced Custom Fields (ACF) Security Bypass (5.9.9)

LimeSurvey Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16173)

WordPress Plugin mywebcounter Cross-Site Scripting (1.1)

Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)

Severity

Medium

Classification

CVE-2007-2692

Tags

Missing Update Known Vulnerabilities