zendframework/zendframework1 Security Advisories for 1.12.16 (4)
-
[MEDIUM] Potential SQL injection in ORDER and GROUP functions of ZF1
PKSA-nfx8-h3yx-xf86 GHSA-vvm3-rv48-j3g5
Affected version: <1.12.20
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[CRITICAL] Potential SQL injection in ORDER and GROUP statements of Zend_Db_Select
PKSA-8gbh-rfqt-hz91 CVE-2016-6233 GHSA-p9hp-3gpv-52w3
Affected version: <1.12.19
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Potential Insufficient Entropy Vulnerability in ZF1
PKSA-pyvt-9h93-zmzx GHSA-229x-22xc-2f2w
Affected version: >=1.12.0,<1.12.18
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[CRITICAL] Potential Information Disclosure and Insufficient Entropy vulnerability in Zend\Captcha\Word
PKSA-vxf6-mhns-kytt GHSA-mhpx-3rv8-wrjm
Affected version: >=1.12.0,<1.12.17
Reported by:
GitHub, FriendsOfPHP/security-advisories