CVE-2010-1848

2010-06-08T00:30:00
ID CVE-2010-1848
Type cve
Reporter cve@mitre.org
Modified 2019-12-17T20:26:00

Description

Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to bypass intended table grants to read field definitions of arbitrary tables, and on 5.1 to read or delete content of arbitrary tables, via a .. (dot dot) in a table name.