Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mysql extension vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4889
The MySQL extension in PHP 5.2.4 and previous versions allows remote malicious users to bypass safe_mode and open_basedir restrictions via the MySQL (1) LOAD_FILE, (2) INTO DUMPFILE, and (3) INTO OUTFILE functions, a different issue than CVE-2007-3997.
Php Mysql Extension
Php Php
NA
CVE-2014-6474
Unspecified vulnerability in Oracle MySQL Server 5.6.19 and previous versions allows remote authenticated users to affect availability via vectors related to SERVER:MEMCACHED.
Oracle Mysql
Mariadb Mariadb
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
NA
CVE-2014-6564
Unspecified vulnerability in Oracle MySQL Server 5.6.19 and previous versions allows remote authenticated users to affect availability via vectors related to SERVER:INNODB FULLTEXT SEARCH DML.
Oracle Mysql
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
Mariadb Mariadb
NA
CVE-2014-6478
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and previous versions, and 5.6.19 and previous versions, allows remote malicious users to affect integrity via vectors related to SERVER:SSL:yaSSL.
Juniper Junos Space
Oracle Mysql
Oracle Solaris 11.3
Mariadb Mariadb
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
NA
CVE-2014-6494
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions, and 5.6.20 and previous versions, allows remote malicious users to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6496.
Oracle Solaris 11.3
Mariadb Mariadb
Juniper Junos Space
Oracle Mysql
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
NA
CVE-2014-6495
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and previous versions, and 5.6.19 and previous versions, allows remote malicious users to affect availability via vectors related to SERVER:SSL:yaSSL.
Oracle Mysql
Oracle Solaris 11.3
Juniper Junos Space
Mariadb Mariadb
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
NA
CVE-2014-6496
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions, and 5.6.20 and previous versions, allows remote malicious users to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6494.
Juniper Junos Space
Oracle Solaris 11.3
Mariadb Mariadb
Oracle Mysql
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Workstation Extension 12
5.3
CVSSv3
CVE-2021-44533
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relativ...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Workbench
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Cluster
Oracle Mysql Cluster 8.0.29
Debian Debian Linux 11.0
7.4
CVSSv3
CVE-2021-44531
Accepting arbitrary Subject Alternative Name (SAN) types, unless a PKI is specifically defined to use a particular SAN type, can result in bypassing name-constrained intermediates. Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 was accepting URI SAN types, whic...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Workbench
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Cluster
5.3
CVSSv3
CVE-2021-44532
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerabilit...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Workbench
Oracle Mysql Cluster
Debian Debian Linux 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »