CVE-2001-0407
CVE-2001-0407 affects MySQL prior to 3.23.36. The vulnerability is a directory traversal in which a database name starting with .. can be created by a local user, enabling modification of arbitrary files and privilege escalation. The underlying issue is the handling of dot-dot sequences in databa...