Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MySQL Comunity Edition Number Of NVD 1286 CRITICAL 7 HIGH 76 MEDIUM 1021 LOW 173
URL https://www.mysql.com/jp/products/community/
Explanation It is an open source, free relational database management system (RDBMS) that is used around the world.
Its performance and functionality are sufficient for commercial use, and it is used for more than just the backend of web applications.
With the merger of Sun Microsystems into Oracle, it was feared that it might no longer be available for free commercial use, but it is still available under the GPL license for cloud backend and internal use.
It is still used as a backend for many web applications (WordPress, Facebook, etc.).

Since it has been merged with Oracle, the development speed has been increased, and the latest version is a higher performance, higher functionality relational database management system (RDBMS).

You can also get technical support by paying a support fee.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • GPL v2
  • オープンソース
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://dev.mysql.com/downloads/mysql/
2 https://endoflife.software/applications/databases/mysql
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1211 MySQL 8.1 8.1.0 July 18, 2023 July 18, 2023 0 0 0 0
1212 New!! MySQL 8 8.0.45 Jan. 20, 2029 April 19, 2018 April 19, 2026 4 25 565 54
1213 MySQL 5.7 5.7.44 Oct. 25, 2023 Jan. 21, 2015 Oct. 21, 2023 6 26 356 33
1214 MySQL 5.6 5.6.51 Jan. 20, 2021 Feb. 5, 2013 Feb. 5, 2021 5 28 359 90
1215 MySQL 5.5 5.5.62 Oct. 22, 2018 Oct. 3, 2010 Jan. 3, 2018 3 26 347 92
1216 MySQL 7.6 7.6.9 Jan. 1, 2000 0 2 40 16
1217 MySQL 7.5 7.5.9 Jan. 1, 2000 0 2 39 15
1218 MySQL 7.4 7.4.9 Jan. 1, 2000 0 2 38 14
1219 MySQL 7.3 7.3.9 Jan. 1, 2000 0 2 13 0
1220 MySQL 7.2 7.2.35 Jan. 1, 2000 0 0 12 0
1221 MySQL 7.1 7.1.37 Jan. 1, 2000 0 0 12 0
1222 MySQL 6.0 6.0.5 Jan. 1, 2000 0 0 18 1
1223 MySQL 5.4 5.4.3 Jan. 1, 2000 0 3 132 41
1224 MySQL 5.3 5.3.9 Jan. 1, 2000 0 3 133 41
1225 MySQL 5.1 5.1.9 Dec. 31, 2013 0 10 221 60
1226 MySQL 5.0 5.0.96 Jan. 9, 2012 0 8 168 54
1227 MySQL 4.1 4.1.9 Jan. 1, 2000 0 5 136 47
1228 MySQL 4.0 4.0.9 Jan. 1, 2000 0 11 139 48
1229 MySQL 3.2 3.20.32a Jan. 1, 2000 0 10 128 45
1230 MySQL 1.5 1.5.1 Jan. 1, 2000 0 6 127 44
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1211 -
5.0 		MEDIUM The my_net_skip_rest function in sql/net_serv.cc in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by sending a la… NVD-CWE-Other
CVE-2010-1849 cpe:2.3:a:oracle:mysql:5.1:*
cpe:2.3:a:oracle:mysql:5.1.9:*
cpe:2.3:a:oracle:mysql:5.1.8:*
cpe:2.3:a:oracle:my… 		2019-12-18 05:26
2010-06-8 		Show GitHub Exploit DB Packet Storm
1212 -
6.0 		MEDIUM Buffer overflow in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to execute arbitrary code via a COM_FIELD_LIST command with a long table name. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1850 cpe:2.3:a:oracle:mysql:5.1:*
cpe:2.3:a:oracle:mysql:5.1.9:*
cpe:2.3:a:oracle:mysql:5.1.8:*
cpe:2.3:a:oracle:my… 		2019-12-18 05:26
2010-06-8 		Show GitHub Exploit DB Packet Storm
1213 -
3.6 		LOW MySQL before 5.1.46 allows local users to delete the data and index files of another user's MyISAM table via a symlink attack in conjunction with the DROP TABLE command, a different vulnerability tha… CWE-59
CWE-264
Link Following
Permissions, Privileges, and Access Controls 		CVE-2010-1626 cpe:2.3:a:oracle:mysql:5.1.44:*
cpe:2.3:a:oracle:mysql:5.1.43:*
cpe:2.3:a:oracle:mysql:5.1.42:*
cpe:2.3:a:orac… 		2019-12-18 05:26
2010-05-22 		Show GitHub Exploit DB Packet Storm
1214 -
7.5 		HIGH Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43,… CWE-787
 Out-of-bounds Write 		CVE-2009-4484 cpe:2.3:a:oracle:mysql:5.0.0:milestone2
cpe:2.3:a:oracle:mysql:5.0.0:milestone1
cpe:2.3:a:oracle:mysql:*:* 		5.0.0
5.1.0

5.0.90
5.1.43 		2026-04-23 09:35
2009-12-31 		Show GitHub Exploit DB Packet Storm
1215 -
4.4 		MEDIUM MySQL 5.1.x before 5.1.41 allows local users to bypass certain privilege checks by calling CREATE TABLE on a MyISAM table with modified (1) DATA DIRECTORY or (2) INDEX DIRECTORY arguments that are or… CWE-59
Link Following 		CVE-2009-4030 cpe:2.3:a:oracle:mysql:5.1:*
cpe:2.3:a:oracle:mysql:5.1.9:*
cpe:2.3:a:oracle:mysql:5.1.8:*
cpe:2.3:a:oracle:my… 		2026-04-23 09:35
2009-12-1 		Show GitHub Exploit DB Packet Storm
1216 -
6.8 		MEDIUM The vio_verify_callback function in viosslfactories.c in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41, when OpenSSL is used, accepts a value of zero for the depth of X.509 certificates, which al… CWE-20
 Improper Input Validation  		CVE-2009-4028 cpe:2.3:a:oracle:mysql:5.1:*
cpe:2.3:a:oracle:mysql:5.1.9:*
cpe:2.3:a:oracle:mysql:5.1.8:*
cpe:2.3:a:oracle:my… 		2026-04-23 09:35
2009-12-1 		Show GitHub Exploit DB Packet Storm
1217 -
4.0 		MEDIUM mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not (1) properly handle errors during execution of certain SELECT statements with subqueries, and does not (2) preserve certain null_v… NVD-CWE-Other
CVE-2009-4019 cpe:2.3:a:oracle:mysql:5.1:*
cpe:2.3:a:oracle:mysql:5.1.9:*
cpe:2.3:a:oracle:mysql:5.1.8:*
cpe:2.3:a:oracle:my… 		2026-04-23 09:35
2009-12-1 		Show GitHub Exploit DB Packet Storm
1218 -
6.0 		MEDIUM sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and 6.0 before 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticate… CWE-59
Link Following 		CVE-2008-7247 cpe:2.3:a:oracle:mysql:6.0.4:*
cpe:2.3:a:oracle:mysql:6.0.3:*
cpe:2.3:a:oracle:mysql:6.0.2:*
cpe:2.3:a:oracle:… 		2026-04-23 09:35
2009-12-1 		Show GitHub Exploit DB Packet Storm
1219 -
8.5 		HIGH Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service… CWE-134
Use of Externally-Controlled Format String 		CVE-2009-2446 cpe:2.3:a:oracle:mysql:5.0.9:*
cpe:2.3:a:oracle:mysql:5.0.8:*
cpe:2.3:a:oracle:mysql:5.0.83:*
cpe:2.3:a:oracle… 		2026-04-23 09:35
2009-07-14 		Show GitHub Exploit DB Packet Storm
1220 -
4.0 		MEDIUM sql/item_xmlfunc.cc in MySQL 5.1 before 5.1.32 and 6.0 before 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a… NVD-CWE-Other
CVE-2009-0819 cpe:2.3:a:oracle:mysql:6.0.4:*
cpe:2.3:a:oracle:mysql:6.0.3:*
cpe:2.3:a:oracle:mysql:6.0.2:*
cpe:2.3:a:oracle:… 		2026-04-23 09:35
2009-03-5 		Show GitHub Exploit DB Packet Storm