Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. (dot dot).
Affected Software
Name |
Vendor |
Start Version |
End Version |
Mysql |
Oracle |
* |
3.23.36 (including) |
References