MiracleLinux 3 : mod_auth_mysql-3.0.0-3.2AXS3 (AXSA:2009-20:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-20:01 advisory. modauthmysql can be used to limit access to documents served by a web server by checking data in a MySQL database. Fixed bugs: CVE-2008-2384 SQL injection...

mod_auth_mysql: character encoding SQL injection flaw

SQL injection vulnerability in modauthmysql.c in the mod-auth-mysql aka libapache2-mod-auth-mysql module for the Apache HTTP Server 2.x, when configured to use a multibyte character set that allows a \ backslash as part of the character encoding, allows remote attackers to execute arbitrary SQL...