3 matches found
CVE-2014-2681
CVE-2014-2681 affects Zend Framework 1 (ZF1) < 1.12.4 and Zend Framework 2 < 2.1.6 / 2.2.x
CVE-2014-2683
CVE-2014-2683 affects Zend Framework components (ZF1 < 1.12.4; ZF2 < 2.1.6,
CVE-2014-2682
CVE-2014-2682 affects Zend Framework 1 up to 1.12.4 and Zend Framework 2 up to 2.1.6 (and 2.2.x before 2.2.6), plus several Zend services, where PHP-FPM threading can share libxml_disable_entity_loader state, enabling XXE via an XML external entity and an entity reference. The issue continues an ...