Zend Framework Security Vulnerabilities and Issues — Zend Framework CVE List

Lucene search

ZendZend Framework

3 matches found

CVE•added 2019/11/26 10:15 p.m.•228 views

CVE-2011-1939

SQL injection vulnerability in Zend Framework 1.10.x before 1.10.9 and 1.11.x before 1.11.6 when using non-ASCII-compatible encodings in conjunction PDO_MySql in PHP before 5.3.6.

9.8CVSS9.9AI score0.15446EPSS

CVE•added 2019/12/15 10:15 p.m.•85 views

CVE-2014-4913

ZF2014-03 has a potential cross site scripting vector in multiple view helpers

6.1CVSS6.1AI score0.00565EPSS

CVE•added 2019/10/25 3:15 p.m.•48 views

CVE-2015-0270

Zend Framework before 2.2.10 and 2.3.x before 2.3.5 has Potential SQL injection in PostgreSQL Zend\Db adapter.

9.8CVSS9.8AI score0.00394EPSS