Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MySQL Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2010-1848 - Vulnerability Database
MySQL

MySQL Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2010-1848

Medium
Reference: CVE-2010-1848
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-1848
Title: MySQL Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to bypass intended table grants to read field definitions of arbitrary tables and on 5.1 to read or delete content of arbitrary tables via a .. (dot dot) in a table name.