Lucene search
K

494 matches found

OSV
OSV
added 2024/06/07 10:27 p.m.19 views

GHSA-848F-MPH5-9PM9 Zendframework Potential Information Disclosure and Insufficient Entropy vulnerability

In Zend Framework, ZendCaptchaWord v1 and Zend\Captcha\Word v2 generate a "word" for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this advisory, the selection was performed using PHP's internal arrayrand function. This function does not generate...

7.5CVSS6.6AI score
Exploits0References3
OSV
OSV
added 2024/06/07 10:25 p.m.27 views

GHSA-V42G-7Q2X-CW32 Zendframework1 potential SQL injection vector using null byte for PDO (MsSql, SQLite)

The PDO adapters of Zend Framework 1 do not filter null bytes values in SQL statements. A PDO adapter can treat null bytes in a query as a string terminator, allowing an attacker to add arbitrary SQL following a null byte, and thus create a SQL injection. We tested and verified the null byte...

9.8CVSS8AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/06/07 10:25 p.m.15 views

Zend-Captcha Information Disclosure and Insufficient Entropy vulnerability

In Zend Framework, ZendCaptchaWord v1 and Zend\Captcha\Word v2 generate a "word" for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this advisory, the selection was performed using PHP's internal arrayrand function. This function does not generate...

6.6AI score
Exploits0References5Affected Software1
OSV
OSV
added 2024/06/07 10:25 p.m.11 views

GHSA-MG4X-PRH7-G4MX Zend-Captcha Information Disclosure and Insufficient Entropy vulnerability

In Zend Framework, ZendCaptchaWord v1 and Zend\Captcha\Word v2 generate a "word" for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this advisory, the selection was performed using PHP's internal arrayrand function. This function does not generate...

7.5CVSS6.6AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/07 10:24 p.m.18 views

ZendFramework1 Potential SQL injection in the ORDER implementation of Zend_Db_Select

The implementation of the ORDER BY SQL statement in ZendDbSelect of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses. For instance, the following code is affected by this issue: $db = ZendDb::factory / options here / ; $select = $db-select...

8.2AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/07 10:7 p.m.22 views

Zend-Diactoros URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.2AI score
Exploits0References5Affected Software1
OSV
OSV
added 2024/06/07 10:7 p.m.14 views

GHSA-FQ4P-86HH-42V9 Zend-Diactoros URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

4.7CVSS7.2AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/07 10:6 p.m.13 views

Zend-Navigation vulnerable to Cross-site Scripting

Many Zend Framework 2 view helpers were using the escapeHtml view helper in order to escape HTML attributes, instead of the more appropriate escapeHtmlAttr. In situations where user data and/or JavaScript is used to seed attributes, this can lead to potential cross site scripting XSS attack...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/06/07 10:6 p.m.9 views

GHSA-6V7P-5QCQ-268C Zend-Navigation vulnerable to Cross-site Scripting

Many Zend Framework 2 view helpers were using the escapeHtml view helper in order to escape HTML attributes, instead of the more appropriate escapeHtmlAttr. In situations where user data and/or JavaScript is used to seed attributes, this can lead to potential cross site scripting XSS attack...

7.5CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2024/06/07 10:1 p.m.27 views

GHSA-JMMP-VH96-78RM Zend-Feed URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.5CVSS7.2AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/07 10:1 p.m.25 views

Zend-Feed URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.2AI score
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/07 9:58 p.m.244 views

Zend-Form vulnerable to Cross-site Scripting

Many Zend Framework 2 view helpers were using the escapeHtml view helper in order to escape HTML attributes, instead of the more appropriate escapeHtmlAttr. In situations where user data and/or JavaScript is used to seed attributes, this can lead to potential cross site scripting XSS attack...

5.8AI score
Exploits0References6Affected Software1
OSV
OSV
added 2024/06/07 9:58 p.m.11 views

GHSA-GVPP-6JRJ-5PQC Zend-Form vulnerable to Cross-site Scripting

Many Zend Framework 2 view helpers were using the escapeHtml view helper in order to escape HTML attributes, instead of the more appropriate escapeHtmlAttr. In situations where user data and/or JavaScript is used to seed attributes, this can lead to potential cross site scripting XSS attack...

6.1CVSS5.8AI score
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/06/07 9:52 p.m.16 views

Zend-HTTP URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.2AI score
Exploits0References5Affected Software1
OSV
OSV
added 2024/06/07 9:52 p.m.10 views

GHSA-CG8W-5JRC-675G Zend-HTTP URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.5CVSS7.2AI score
Exploits0References5
OSV
OSV
added 2024/06/07 9:38 p.m.9 views

GHSA-GWPM-PM6X-H7RJ ZendFramework Cross-site Scripting vector in `Zend_Filter_StripTags`

ZendFilterStripTags is a filtering class analogous to PHP's striptags function. In addition to stripping HTML tags and selectively keeping those provided in a whitelist, it also provides the ability to whitelist specific attributes to retain per whitelisted tag. The reporter discovered that...

6.1CVSS5.4AI score
Exploits0References3
OSV
OSV
added 2024/06/07 9:20 p.m.8 views

GHSA-G52P-86J5-XR8Q ZendFramework Potential Cross-site Scripting in Development Environment Error View Script

The default error handling view script generated using ZendTool failed to escape request parameters when run in the "development" configuration environment, providing a potential XSS attack vector. ZendToolProjectContextZfViewScriptFile was patched such that the view script template now calls the...

6.1CVSS6.2AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/06/07 8:37 p.m.11 views

ZendFramework Information Disclosure and Insufficient Entropy vulnerability

In Zend Framework, ZendCaptchaWord v1 and Zend\Captcha\Word v2 generate a "word" for a CAPTCHA challenge by selecting a sequence of random letters from a character set. Prior to this advisory, the selection was performed using PHP's internal arrayrand function. This function does not generate...

6.6AI score
Exploits0References4Affected Software1
OSV
OSV
added 2024/06/07 8:27 p.m.8 views

GHSA-XG9W-R469-M455 ZendFramework Potential Information Disclosure and Insufficient Entropy vulnerabilities

In Zend Framework 2, the Zend\Math\Rand component generates random bytes using the OpenSSL or Mcrypt extensions when available but will otherwise use PHP's mtrand function as a fallback. All outputs from mtrand are predictable for the same PHP process if an attacker can brute force the seed used ...

7.4CVSS7.3AI score
Exploits0References5
OSV
OSV
added 2024/06/07 8:15 p.m.13 views

GHSA-JQ87-2WXP-8349 ZendFramework Route Parameter Injection Via Query String in `Zend\Mvc`

In Zend Framework 2, Zend\Mvc\Router\Http\Query is used primarily to allow appending query strings to URLs when assembled. However, due to the fact that it captures any query parameters into the RouteMatch, and the fact that RouteMatch parameters are merged with any parent routes, this can lead t...

7.5CVSS7.2AI score
Exploits0References5
Rows per page
Query Builder