20 matches found
Debian: Security Advisory (DLA-251-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2014-0311)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-4914
The ZendDbSelect::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors...
CVE-2014-4914
The vulnerability CVE-2014-4914 affects Zend Framework’s Zend_Db_Select::order in versions prior to 1.12.7. The issue arises from improper handling of parentheses in the ORDER BY clause, enabling remote SQL injection via unspecified vectors. Affected product: Zend Framework (PHP framework); vulne...
CVE-2014-4914
The ZendDbSelect::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors...
[SECURITY] [DLA 251-2] zendframework regression update
Package : zendframework Version : 1.10.6-1squeeze4 CVE ID : CVE-2012-6531 CVE-2012-6532 CVE-2014-2681 CVE-2014-2682 CVE-2014-2683 CVE-2014-2684 CVE-2014-2685 CVE-2014-4914 CVE-2014-8088 CVE-2014-8089 CVE-2015-3154 Debian Bug : 743175 754201 The previous zendframework upload incorrectly fixes...
DLA-251-2 zendframework - regression update
Bulletin has no description...
Debian DLA-251-2 : zendframework regression update
The previous zendframework upload incorrectly fixes CVE-2015-3154, causing a regression. This update corrects this problem. Thanks to Evgeny Smolin . CVE-2012-6531 Pdraic Brady identified a weakness to handle the SimpleXMLElement zendframework class, allowing to remote attackers to read arbitrary...
DLA-251-1 zendframework - security update
Bulletin has no description...
[SECURITY] [DSA 3265-1] zendframework security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3265-1 [email protected] http://www.debian.org/security/ David PrA©vot May 20, 2015 http://www.debian.org/security/faq -...
DSA-3265-2 zendframework - regression update
Bulletin has no description...
[SECURITY] [DSA 3265-1] zendframework security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3265-1 [email protected] http://www.debian.org/security/ David Prévot May 20, 2015 http://www.debian.org/security/faq -...
Fedora Update for php-ZendFramework FEDORA-2014-12344
Check the version of php-ZendFramework SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868404";...
Fedora Update for php-ZendFramework FEDORA-2014-12418
Check the version of php-ZendFramework SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868406";...
[ MDVSA-2014:145 ] php-ZendFramework
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:145 http://www.mandriva.com/en/support/security/ Package : php-ZendFramework Date : July 31, 2014 Affected: Business Server 1.0 Problem Description: A vulnerability has been found and corrected in...
Updated php-ZendFramework packages fix security vulnerability
The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914...
MGASA-2014-0311 Updated php-ZendFramework packages fix security vulnerability
The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914...
Fedora Update for php-ZendFramework FEDORA-2014-8309
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : php-ZendFramework-1.12.7-1.fc19 (2014-8309)
Update to 1.12.7 fixes CVE-2014-4914 aka. ZF2014-04: Potential SQL injection in the ORDER implementation of ZendDbSelect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
Fedora 20 : php-ZendFramework-1.12.7-1.fc20 (2014-8308)
Update to 1.12.7 fixes CVE-2014-4914 aka. ZF2014-04: Potential SQL injection in the ORDER implementation of ZendDbSelect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...