Lucene search
MITRECVE-2024-21511HistoryApr 23, 2024 - 5:00 a.m.
CVE-2024-21511
2024-04-2305:00:00
MITRE
web.nvd.nist.gov
90
mysql2
code injection
vulnerable
Versions of the package mysql2 before 3.9.7 are vulnerable to Arbitrary Code Injection due to improper sanitization of the timezone parameter in the readCodeFor function by calling a native MySQL Server date/time function.
Related
cvelist
cvelist
CVE-2024-21511
2024-04-23 05:00:00
github
github
MySQL2 for Node Arbitrary Code Injection
2024-04-23 06:30:47
veracode
veracode
Arbitrary Code Injection
2024-04-24 06:55:49
redhatcve
redhatcve
CVE-2024-21511
2024-04-24 05:04:20
osv
osv
MySQL2 for Node Arbitrary Code Injection
2024-04-23 06:30:47
CVE-2024-21511
2024-04-23 05:15:48
wolfi
wolfi
CVE-2024-21511 vulnerabilities
2024-05-17 09:07:10
cgr
cgr
CVE-2024-21511 vulnerabilities
2024-05-17 09:07:10