85 matches found
Cross site request forgery (csrf)
The qtranslate-x plugin before 3.4.4 for WordPress has CSRF with resultant XSS via the wp-admin/options-general.php?page=qtranslate-x jsonconfigfiles or jsoncustomi18nconfig parameter...
Denial Of Service (DoS)
MySQL is vulnerable to denial of service Dos attacks. A remote authenticated user could exploit a flaw in the X Plugin component to compromise MySQL Server via multiple protocols which leads to cause a hang or frequently repeatable crash...
mysql: X Plugin unspecified vulnerability (CPU Jul 2017)
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
mysql: Server: X Plugin unspecified vulnerability (CPU Jan 2017)
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server...
mysql: X Plugin unspecified vulnerability (CPU Jul 2017)
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...
Oracle MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities
Binary data 700185.prm...
CVE-2017-3646
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...
Design/Logic Flaw
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
UBUNTU-CVE-2017-3646
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...
CVE-2017-3646
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...
CVE-2017-3646
CVE-2017-3646 affects the Oracle MySQL Server X Plugin. Affected: MySQL 5.7.16 and earlier. An attacker with network access via multiple protocols and high privileges can cause a hang or crash (DOS). CVSS 3.0 base 4.9. Remediation: apply vendor patches to move to a later MySQL 5.7.x (e.g., RH adv...
CVE-2017-3637
CVE-2017-3637 affects Oracle MySQL Server (X Plugin). Affected: MySQL 5.7.18 and earlier. Vulnerability arises in the X Plugin allowing a low-privilege, network-attached attacker via multiple protocols to cause a hang or crash (DOS). Mitigation: vendor advisories indicate fixed in 5.7.19 and newe...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2017-24326)
Oracle MySQL is an open source relational database management system from Oracle. A security vulnerability exists in the X Plugin subcomponent of the MySQL Server component in Oracle MySQL, version 5.7.16 and earlier. A remote attacker could exploit this vulnerability to cause a denial of service...
MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities (RPM Check) (July 2017 CPU) (October 2017 CPU)
The version of MySQL running on the remote host is 5.7.x prior to 5.7.19. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the UDF component that allows an authenticated, remote attacker to cause a denial of service condition. CVE-2017-3529 - An unspecified...
Oracle MySQL Server Denial of Service Vulnerability (CNVD-2017-17188)
Oracle MySQL is an open source relational database management system from Oracle Corporation, of which the MySQL Server component is a server component. A security vulnerability exists in the X Plugin subcomponent of the MySQL Server component of Oracle MySQL. A remotely authorized attacker could...
CVE-2017-3646
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...
CVE-2017-3637
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
Oracle Mysql Security Updates (jul2017-3236622) 01 - Linux
Oracle MySQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; ifdescription...
UBUNTU-CVE-2017-3637
Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: X Plugin. Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
MySQL 5.7.x < 5.7.19 Multiple Vulnerabilities (Jul 2017 CPU) (Oct 2017 CPU) (Jul 2019 CPU)
The version of MySQL running on the remote host is 5.7.x prior to 5.7.19. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the UDF component that allows an authenticated, remote attacker to cause a denial of service condition. CVE-2017-3529 - An unspecified...