Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-fpw7-j2hg-69v5: mysql2 Remote Code Execution (RCE) via the readCodeFor function

Versions of the package mysql2 before 3.9.4 are vulnerable to Remote Code Execution (RCE) via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values.

ghsa
#sql#git#rce

mysql2 Remote Code Execution (RCE) via the readCodeFor function

Critical severity GitHub Reviewed Published Apr 11, 2024 to the GitHub Advisory Database • Updated Apr 12, 2024

ghsa: Latest News

GHSA-27wf-5967-98gx: Kubernetes kubelet arbitrary command execution