How a hidden MySQL ‘feature’ triggered a significant security review
4 min readJul 13, 2023
Last week my VP of Engineering and I were trying to debug a thorny issue where invalid rows were being returned in a MySQL query set.
Instead of applying the WHERE
filter as expected, we were getting hundreds of rows returned that did not appear to meet the filter criteria.