Description
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted print call to display the error message.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21337 Vulnerability (CVE-2022-21337)
Microsoft SQL Server Other Vulnerability (CVE-1999-1556)
WordPress Plugin Visitor Traffic Real Time Statistics Security Bypass (2.11)
Dolibarr Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-14240)
WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Request Forgery (2.25.2)