1 results (0.016 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

The mysql-ocaml bindings 1.0.4 for MySQL do not properly support the mysql_real_escape_string function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings. El mysql-ocaml bindings v1.0.4 para MySQL no soporta adecuadamente la función mysql_real_escape_string, lo que puede permitir a atacantes remotos elevar vulnerabilidades de escape incluyendo codificaciones de caracteres multibyte. • http://secunia.com/advisories/37047 http://www.debian.org/security/2009/dsa-1910 http://www.mandriva.com/security/advisories?name=MDVSA-2009:279 http://www.osvdb.org/59030 •