Description
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
Remediation
References
Related Vulnerabilities
Joomla! Core 3.x.x Security Bypass (3.2.0 - 3.8.1)
WordPress Plugin Pardakht Delkhah Cross-Site Scripting (2.9.2)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)
OpenSSL Cryptographic Issues Vulnerability (CVE-2014-3572)
Payara URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41699)