Description
sql/item_xmlfunc.cc in MySQL 5.1 before 5.1.32 and 6.0 before 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a FilterExpr with ExtractValue() or UpdateXML()," which triggers an assertion failure.
Remediation
References
Related Vulnerabilities
Werkzeug WSGI CVE-2023-23934 Vulnerability (CVE-2023-23934)
Magento Incorrect Authorization Vulnerability (CVE-2020-9692)
WordPress Plugin ApplyOnline-Application Form Builder and Manager Cross-Site Scripting (1.9.94)
WordPress Plugin LayerSlider Multiple Vulnerabilities (6.2.0)
WordPress Plugin IGIT Posts Slider Widget 'src' Parameter Cross-Site Scripting (1.0)