This page collects WhisperX intelligence signals tagged #mariadb. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical security fix addressing CVE-2024-34693 has been removed from Apache Superset, restoring a vulnerability that allows authenticated users to read arbitrary files from MariaDB servers. The revert strips away local_infile connection parameter restrictions from MariaDBEngineSpec, enabling LOAD DATA LOCAL INFILE t...
A critical input validation vulnerability in Apache Superset exposes affected installations to arbitrary file read attacks by authenticated users through specially crafted MariaDB connections. The flaw leverages the LOCAL_INFILE capability—a database feature disabled by default on MariaDB servers but potentially exploi...
A critical input validation flaw in Apache Superset enables authenticated attackers to leverage MariaDB's local_infile functionality to read arbitrary files from the web server. The vulnerability, tracked as CVE-related to improper input validation, permits an attacker who can create a MariaDB database connection to ex...