logo
DATABASE RESOURCES PRICING ABOUT US

ruby-mysql Client File Read

Description

A malicious MySQL server can request local file content from a client using ruby-mysql prior to version 2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 and later.


Affected Software


CPE Name Name Version
ruby-mysql 2.10.0