Description
MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (infinite loop) via multiple invocations of a (1) prepared statement or (2) stored procedure that creates a query with nested JOIN statements.
Remediation
References
Related Vulnerabilities
Liferay Portal Uncontrolled Resource Consumption Vulnerability (CVE-2025-62260)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17302)
WordPress Plugin Per page add to head Cross-Site Scripting (1.4.4)
Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (2.5.0 - 3.9.1)