CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2015/09/08 12:0 a.m.•30 views

Amazon Linux: Security Advisory (ALAS-2014-460)

9.8CVSS9.6AI score0.01121EPSS

Exploits1References3

OpenVAS•added 2015/09/08 12:0 a.m.•27 views

Amazon Linux: Security Advisory (ALAS-2014-394)

OpenVAS•added 2015/09/08 12:0 a.m.•36 views

Amazon Linux: Security Advisory (ALAS-2015-560)

6.1CVSS6.6AI score0.00274EPSS

Exploits1References3

OpenVAS•added 2015/09/08 12:0 a.m.•33 views

Amazon Linux: Security Advisory (ALAS-2014-377)

7.5CVSS9.6AI score0.02971EPSS

Tenable Nessus•added 2015/07/08 12:0 a.m.•31 views

Amazon Linux AMI : php-ZendFramework (ALAS-2015-560)

Upstream reported a vulnerability in the Zend\Mail component in Zend Framework 2, specifically in how it handles headers. Headers are not correctly filtered for newlines, allowing the ability to send additional, unrelated headers and to bypass additional headers by emitting the header/body...

6.1CVSS7.5AI score0.00274EPSS

Exploits1References3

OpenVAS•added 2015/07/07 12:0 a.m.•29 views

Fedora Update for php-ZendFramework FEDORA-2015-8704

6.1CVSS6.6AI score0.00274EPSS

OpenVAS•added 2015/06/09 12:0 a.m.•29 views

Fedora Update for php-ZendFramework FEDORA-2015-8714

9.8CVSS8AI score0.03436EPSS

OpenVAS•added 2015/06/09 12:0 a.m.•21 views

Fedora Update for php-ZendFramework FEDORA-2015-8710

6.1CVSS6.6AI score0.00274EPSS

OSV•added 2015/06/08 9:17 p.m.•5 views

MGASA-2015-0241 Updated php-ZendFramework packages fix security vulnerabilities

Updated php-ZendFramework packages fix security vulnerability: Filippo Tessarotto and Maks3w reported potential CRLF injection attacks in mail and HTTP headers in ZendFramework before 1.2.12 CVE-2015-3154...

6.1CVSS7.1AI score0.00274EPSS

Exploits1References8

securityvulns•added 2015/05/12 12:0 a.m.•97 views

[ MDVSA-2015:097 ] php-ZendFramework

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:097 http://www.mandriva.com/en/support/security/ Package : php-ZendFramework Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated php-ZendFramework packages fix multiple...

7.5CVSS10AI score0.03436EPSS

Exploits1

Tenable Nessus•added 2014/12/15 12:0 a.m.•29 views

Amazon Linux AMI : php-ZendFramework (ALAS-2014-460)

The 1 ZendLdap class in Zend before 1.12.9 and 2 Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with a null byte, which triggers an unauthenticated bind. CVE-2014-8088 The 1.12.9, 2.2.8, and 2.3.3 releas...

9.8CVSS8.3AI score0.01121EPSS

Exploits1References4

securityvulns•added 2014/12/01 12:0 a.m.•70 views

[ MDVSA-2014:216 ] php-ZendFramework

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:216 http://www.mandriva.com/en/support/security/ Package : php-ZendFramework Date : November 20, 2014 Affected: Business Server 1.0 Problem Description: A vulnerability has been found and corrected in...

5CVSS9.7AI score0.00608EPSS

Exploits0

Tenable Nessus•added 2014/11/21 12:0 a.m.•35 views

Mandriva Linux Security Advisory : php-ZendFramework (MDVSA-2014:216)

A vulnerability has been found and corrected in php-ZendFramework : The 1 ZendLdap class in Zend before 1.12.9 and 2 Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with a null byte, which triggers an...

5CVSS8AI score0.00608EPSS

OpenVAS•added 2014/10/18 12:0 a.m.•25 views

Fedora Update for php-ZendFramework FEDORA-2014-12418

Check the version of php-ZendFramework SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868406";...

OpenVAS•added 2014/10/18 12:0 a.m.•22 views

Fedora Update for php-ZendFramework FEDORA-2014-12344

Tenable Nessus•added 2014/10/12 12:0 a.m.•41 views

Amazon Linux AMI : php-ZendFramework (ALAS-2014-394)

The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses, as discussed in http://framework.zend.com/security/advisory/ZF2014-04. C Tenable Network Security, Inc. The descriptive text a...

9.8CVSS8.5AI score0.03436EPSS

OSV•added 2014/08/05 8:8 p.m.•3 views

MGASA-2014-0311 Updated php-ZendFramework packages fix security vulnerability

The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914...

9.8CVSS9.8AI score0.03436EPSS

Exploits0References4

Tenable Nessus•added 2014/08/01 12:0 a.m.•25 views

Mandriva Linux Security Advisory : php-ZendFramework (MDVSA-2014:145)

A vulnerability has been found and corrected in php-ZendFramework : The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses CVE-2014-4914. The updated packages have been upgraded to t...

9.8CVSS8.1AI score0.03436EPSS

OpenVAS•added 2014/07/28 12:0 a.m.•33 views

Fedora Update for php-ZendFramework FEDORA-2014-8309

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...