Description
MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 allows remote authenticated users to cause a denial of service (server crash) via a prepared statement that uses GROUP_CONCAT with the WITH ROLLUP modifier, probably triggering a use-after-free error when a copied object is modified in a way that also affects the original object.
Remediation
References
Related Vulnerabilities
WordPress Plugin Cool Video Gallery Cross-Site Request Forgery (1.8)
Magento Session Fixation Vulnerability (CVE-2019-7849)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.10)
WordPress Plugin SVG Support Cross-Site Scripting (2.5.1)
WordPress Plugin IMPress for IDX Broker Multiple Vulnerabilities (2.6.1)