Description
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-2081 Vulnerability (CVE-2021-2081)
WordPress Plugin ReviewX-Multi-criteria Rating & Reviews for WooCommerce SQL Injection (1.6.8)
WordPress Plugin JupiterX Core Security Bypass (2.0.6)
PostgreSQL CVE-2022-41862 Vulnerability (CVE-2022-41862)
Ruby Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-10933)