Description
MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier, probably triggering a use-after-free error when a copied object is modified in a way that also affects the original object.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4297)
WordPress Plugin WordPress Slider Block Gutenslider Cross-Site Scripting (5.1.5)
WebLogic CVE-2018-3213 Vulnerability (CVE-2018-3213)
WordPress Plugin WooCommerce Help Scout Arbitrary File Upload (2.9)
WordPress Plugin Google Calendar Events Cross-Site Scripting (2.0.3.1)