Lucene search
Veracode Vulnerability DatabaseVERACODE:6083HistoryApr 11, 2018 - 6:28 a.m.
SQL Injection
2018-04-1106:28:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.005 Low
EPSS
Percentile
76.9%
zendframework/zendframework1 is vulnerable to SQL injection attacks. The vulnerability exists due to the improper regular expressions used to prevent SQL injection in Zend_Db_Select::order, Zend_Db_Select::group, and Zend_Db_Select::from of Select.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zendframework/zendframework1 | le | 1.12.7 |
Related
jvn
jvn
JVN#71730320: Zend Framework vulnerable to SQL injection
2015-12-11 00:00:00
amazon
amazon
Medium: php-ZendFramework
2014-08-21 11:18:00
nessus
nessus
Amazon Linux AMI : php-ZendFramework (ALAS-2014-394)
2014-10-12 00:00:00
Fedora 20 : php-ZendFramework-1.12.7-1.fc20 (2014-8308)
2014-07-22 00:00:00
Mandriva Linux Security Advisory : php-ZendFramework (MDVSA-2014:145)
2014-08-01 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:145 ] php-ZendFramework
2014-10-15 00:00:00
[ MDVSA-2015:097 ] php-ZendFramework
2015-05-12 00:00:00
[SECURITY] [DSA 3265-1] zendframework security update
2015-06-08 00:00:00
ubuntucve
ubuntucve
CVE-2014-4914
2017-12-29 00:00:00
cve
cve
CVE-2014-4914
2017-12-29 14:29:00
openvas
openvas
Fedora Update for php-ZendFramework FEDORA-2014-8309
2014-07-28 00:00:00
Mageia: Security Advisory (MGASA-2014-0311)
2022-01-28 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-394)
2015-09-08 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: php-ZendFramework-1.12.7-1.fc20
2014-07-22 03:32:31
[SECURITY] Fedora 19 Update: php-ZendFramework-1.12.7-1.fc19
2014-07-22 03:29:47
nvd
nvd
CVE-2014-4914
2017-12-29 14:29:00
prion
prion
Sql injection
2017-12-29 14:29:00
cvelist
cvelist
CVE-2014-4914
2017-12-29 14:00:00
mageia
mageia
Updated php-ZendFramework packages fix security vulnerability
2014-08-06 00:08:48
osv
osv
zendframework - security update
2015-05-20 00:00:00
zendframework - regression update
2015-05-20 00:00:00
zendframework - regression update
2015-06-23 00:00:00
debian
debian
[SECURITY] [DSA 3265-2] zendframework regression update
2015-05-24 11:55:24
[SECURITY] [DSA 3265-1] zendframework security update
2015-05-20 09:37:25
[SECURITY] [DLA 251-1] zendframework security update
2015-06-20 18:40:57