Lucene search
JpcertCVELIST:CVE-2016-4861HistoryFeb 16, 2017 - 6:00 p.m.
CVE-2016-4861
2017-02-1618:00:00
jpcert
raw.githubusercontent.com
1
The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework before 1.12.20 might allow remote attackers to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation.
Related
nessus
nessus
Debian DLA-646-1 : zendframework security update
2016-10-06 00:00:00
Debian DLA-1403-1 : zendframework security update
2018-06-29 00:00:00
Fedora 24 : php-ZendFramework (2016-7f193a0c59)
2016-10-10 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-646-1)
2023-03-08 00:00:00
Debian: Security Advisory (DLA-1403-1)
2018-07-09 00:00:00
Mageia: Security Advisory (MGASA-2016-0352)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DLA 1403-1] zendframework security update
2018-06-28 20:10:30
[SECURITY] [DLA 646-1] zendframework security update
2016-10-05 20:45:21
osv
osv
Zend Framework Allows SQL Injection
2022-05-14 02:19:45
zendframework - security update
2016-10-05 00:00:00
zendframework - security update
2018-06-28 00:00:00
cve
cve
CVE-2016-4861
2017-02-17 02:59:00
mageia
mageia
Updated php-ZendFramework packages fix security vulnerability
2016-10-21 17:48:32
prion
prion
Sql injection
2017-02-17 02:59:00
ubuntucve
ubuntucve
CVE-2016-4861
2017-02-17 00:00:00
github
github
Zend Framework Allows SQL Injection
2022-05-14 02:19:45
jvn
jvn
JVN#18926672: Zend Framework vulnerable to SQL injection
2016-09-15 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: php-ZendFramework-1.12.20-1.fc25
2016-10-09 03:26:26
[SECURITY] Fedora 23 Update: php-ZendFramework-1.12.20-1.fc23
2016-10-09 09:29:08
[SECURITY] Fedora 24 Update: php-ZendFramework-1.12.20-1.fc24
2016-10-09 06:28:49
amazon
amazon
Medium: php-ZendFramework
2016-11-18 12:30:00
gentoo
gentoo
Zend Framework: Multiple vulnerabilities
2018-04-09 00:00:00