zendframework/zendframework1 is vulnerable to SQL injection. The PDO adapters do not filter null bytes from SQL statements, allowing attackers to leverage this flaw to inject and execute SQL queries.
CPE | Name | Operator | Version |
---|---|---|---|
zendframework/zendframework1 | le | 1.12.15 |