zendframework vulnerabilities

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the zendframework package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • L
CVE-2011-1939
debian:8: <1.11.6-1 Not available 27 Jun, 2018
  • L
CVE-2014-8089
debian:8: <1.12.9+dfsg-1 Not available 27 Jun, 2018
  • M
CVE-2015-3154
debian:8: <1.12.9+dfsg-2+deb8u1 Not available 27 Jun, 2018
  • H
SQL Injection
debian:8: <1.12.7-0.1 Not available 29 Dec, 2017
  • H
SQL Injection
debian:8: <1.12.9+dfsg-2+deb8u7 Not available 17 Feb, 2017
  • H
Permissions
debian:8: <1.12.9+dfsg-2+deb8u4 Not available 07 Jun, 2016
  • M
SQL Injection
debian:8: <1.12.9+dfsg-2+deb8u4 Not available 07 Jun, 2016
  • M
XML External Entity Injection (XXE)
debian:8: <1.12.9+dfsg-2+deb8u3 Not available 25 Aug, 2015
  • M
Denial of Service (DoS)
debian:8: <1.12.5-0.1 Not available 16 Nov, 2014
  • M
XML External Entity Injection (XXE)
debian:8: <1.12.5-0.1 Not available 16 Nov, 2014
  • M
XML External Entity Injection (XXE)
debian:8: <1.12.5-0.1 Not available 16 Nov, 2014
  • M
Permissions
debian:8: <1.12.5-0.1 Not available 16 Nov, 2014
  • M
Improper Authentication
debian:8: <1.12.9+dfsg-1 Not available 22 Oct, 2014
  • H
Improper Authentication
debian:8: <1.12.5-0.1 Not available 04 Sep, 2014
  • M
Information Exposure
debian:8: <1.11.13-1.1 Not available 02 May, 2013
  • M
XML External Entity Injection (XXE)
debian:8: <1.11.12-1 Not available 13 Feb, 2013
  • M
Denial of Service (DoS)
debian:8: <1.11.13-1 Not available 13 Feb, 2013
  • M
XML External Entity Injection (XXE)
debian:8: <1.11.13-1 Not available 13 Feb, 2013