How a hidden MySQL ‘feature’ triggered a significant security review

Avoid an easy to make type-conversion mistakes when working with MySQL

Last week my VP of Engineering and I were trying to debug a thorny issue where invalid rows were being returned in a MySQL query set.

Instead of applying the WHERE filter as expected, we were getting hundreds of rows returned that did not appear to meet the filter criteria.