Description
Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote authenticated users to cause a denial of service (mysqld daemon crash) by using EXPLAIN with crafted "SELECT ... UNION ... ORDER BY (SELECT ... WHERE ...)" statements, which triggers a NULL pointer dereference in the Item_singlerow_subselect::store function.
Remediation
References
Related Vulnerabilities
WordPress Plugin JS MultiHotel Multiple Vulnerabilities (2.2.1)
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.2.4)
WordPress Plugin Simple Admin Language Change Security Bypass (2.0.1)
WordPress Plugin Very Simple Quiz Cross-Site Scripting (1.0.0)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0191)