zendframework/zendframework1 is vulnerable to SQL injection attacks. The vulnerability exists due to the improper regular expressions used to prevent SQL injection in Zend_Db_Select::order
, Zend_Db_Select::group
, and Zend_Db_Select::from
of Select.php
.
CPE | Name | Operator | Version |
---|---|---|---|
zendframework/zendframework1 | le | 1.12.7 |