CVE-2024-21507 | mysql2 up to 3.9.2 Key keyFromFields injection (SNYK-JS-MYSQL2-6591300)

Posted by Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability, which was classified as critical, has been found in mysql2 up to 3.9.2. This issue affects the function keyFromFields of the component Key Handler. The manipulation leads to injection.

The identification of this vulnerability is CVE-2024-21507. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21507 | mysql2 up to 3.9.2 Key keyFromFields injection (SNYK-JS-MYSQL2-6591300)

Related Posts

CVE-2024-1705 | Shopwind up to 4.6 Installation DefaultController.php actionCreate code injection

CVE-2023-50208 | D-Link G416 ovpncfg stack-based overflow (ZDI-23-1824)

CVE-2024-24621 | Softaculous Webuzo up to 4.2.9 Password Reset comparison

CVE-2024-5188 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.22 on WordPress get_manual_calendar_events cross site scripting