pkg:composer/zendframework/zend-db
Type
composer
Namespace
zendframework
Name
zend-db
Known advisories, vulnerabilities and fixes for zend-db package.
Critical
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 2.1.0, < 2.1.99 >= 2.2.0, < 2.2.8 >= 2.0.0, < 2.0.99 >= 2.3.0, < 2.3.3 |
CVE-2014-8089
|
PHP:ZENDFRAMEWORK-ZEND-DB-2014-8089 | SQL injection vector when manually quoting values for sqlsrv extension, using null byte | critical |
2014-09-16T22:00:00
(10 years ago) |
|
Affected | >= 2.1.0, < 2.1.99 >= 2.2.0, < 2.2.10 >= 2.0.0, < 2.0.99 >= 2.3.0, < 2.3.5 |
CVE-2015-0270
|
PHP:ZENDFRAMEWORK-ZEND-DB-2015-0270 | Potential SQL injection in PostgreSQL Zend\Db adapter | critical |
2015-02-18T19:15:09
(9 years ago) |