Lucene search
K

20 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.133 views

Debian: Security Advisory (DLA-251-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.02802EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2014-0311)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.02332EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2017/12/29 2:29 p.m.24 views

CVE-2014-4914

The ZendDbSelect::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors...

9.8CVSS7.2AI score0.02332EPSS
Exploits0References3
CVE
CVE
added 2017/12/29 2:0 p.m.217 views

CVE-2014-4914

The vulnerability CVE-2014-4914 affects Zend Framework’s Zend_Db_Select::order in versions prior to 1.12.7. The issue arises from improper handling of parentheses in the ORDER BY clause, enabling remote SQL injection via unspecified vectors. Affected product: Zend Framework (PHP framework); vulne...

9.8CVSS7.9AI score0.02332EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2017/12/29 2:0 p.m.19 views

CVE-2014-4914

The ZendDbSelect::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors...

8.1AI score0.02332EPSS
Exploits0References6
Debian
Debian
added 2015/06/23 8:26 p.m.50 views

[SECURITY] [DLA 251-2] zendframework regression update

Package : zendframework Version : 1.10.6-1squeeze4 CVE ID : CVE-2012-6531 CVE-2012-6532 CVE-2014-2681 CVE-2014-2682 CVE-2014-2683 CVE-2014-2684 CVE-2014-2685 CVE-2014-4914 CVE-2014-8088 CVE-2014-8089 CVE-2015-3154 Debian Bug : 743175 754201 The previous zendframework upload incorrectly fixes...

9.8CVSS7AI score0.02802EPSS
Exploits2
OSV
OSV
added 2015/06/22 12:0 a.m.30 views

DLA-251-2 zendframework - regression update

Bulletin has no description...

8.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/06/22 12:0 a.m.42 views

Debian DLA-251-2 : zendframework regression update

The previous zendframework upload incorrectly fixes CVE-2015-3154, causing a regression. This update corrects this problem. Thanks to Evgeny Smolin . CVE-2012-6531 Pdraic Brady identified a weakness to handle the SimpleXMLElement zendframework class, allowing to remote attackers to read arbitrary...

9.8CVSS7.9AI score0.02802EPSS
Exploits2References13
OSV
OSV
added 2015/06/20 12:0 a.m.39 views

DLA-251-1 zendframework - security update

Bulletin has no description...

9.8CVSS8.1AI score0.02802EPSS
Exploits2
securityvulns
securityvulns
added 2015/06/08 12:0 a.m.236 views

[SECURITY] [DSA 3265-1] zendframework security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3265-1 [email protected] http://www.debian.org/security/ David PrA©vot May 20, 2015 http://www.debian.org/security/faq -...

7.5CVSS1.4AI score0.02802EPSS
Exploits2
OSV
OSV
added 2015/05/24 12:0 a.m.28 views

DSA-3265-2 zendframework - regression update

Bulletin has no description...

8.1AI score
Exploits0
Debian
Debian
added 2015/05/20 9:37 a.m.38 views

[SECURITY] [DSA 3265-1] zendframework security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3265-1 [email protected] http://www.debian.org/security/ David Prévot May 20, 2015 http://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.02802EPSS
Exploits2
OpenVAS
OpenVAS
added 2014/10/18 12:0 a.m.22 views

Fedora Update for php-ZendFramework FEDORA-2014-12344

Check the version of php-ZendFramework SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868404";...

9.8CVSS9.6AI score0.02332EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/10/18 12:0 a.m.25 views

Fedora Update for php-ZendFramework FEDORA-2014-12418

Check the version of php-ZendFramework SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868406";...

9.8CVSS9.6AI score0.02332EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/10/15 12:0 a.m.90 views

[ MDVSA-2014:145 ] php-ZendFramework

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:145 http://www.mandriva.com/en/support/security/ Package : php-ZendFramework Date : July 31, 2014 Affected: Business Server 1.0 Problem Description: A vulnerability has been found and corrected in...

7.5CVSS9.8AI score0.02332EPSS
Exploits0
Mageia
Mageia
added 2014/08/05 8:8 p.m.37 views

Updated php-ZendFramework packages fix security vulnerability

The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914...

9.8CVSS9.8AI score0.02332EPSS
Exploits0References3
OSV
OSV
added 2014/08/05 8:8 p.m.4 views

MGASA-2014-0311 Updated php-ZendFramework packages fix security vulnerability

The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914...

9.8CVSS9.8AI score0.02332EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.33 views

Fedora Update for php-ZendFramework FEDORA-2014-8309

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02332EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/07/22 12:0 a.m.34 views

Fedora 19 : php-ZendFramework-1.12.7-1.fc19 (2014-8309)

Update to 1.12.7 fixes CVE-2014-4914 aka. ZF2014-04: Potential SQL injection in the ORDER implementation of ZendDbSelect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

9.8CVSS8.2AI score0.02332EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/07/22 12:0 a.m.25 views

Fedora 20 : php-ZendFramework-1.12.7-1.fc20 (2014-8308)

Update to 1.12.7 fixes CVE-2014-4914 aka. ZF2014-04: Potential SQL injection in the ORDER implementation of ZendDbSelect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

9.8CVSS8.2AI score0.02332EPSS
Exploits0References3
Rows per page
Query Builder