zendframework/zend-db Security Advisories for 2.2.5 (2)
-
[CRITICAL] Potential SQL injection in PostgreSQL Zend\Db adapter
PKSA-rh5y-yy6c-fb7k CVE-2015-0270 GHSA-v59p-p692-v382
Affected version: >=2.0.0,<2.0.99|>=2.1.0,<2.1.99|>=2.2.0,<2.2.10|>=2.3.0,<2.3.5
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[CRITICAL] SQL injection vector when manually quoting values for sqlsrv extension, using null byte
PKSA-nmjm-qdd3-rzhy CVE-2014-8089 GHSA-qh9w-r7g5-q939
Affected version: >=2.0.0,<2.0.99|>=2.1.0,<2.1.99|>=2.2.0,<2.2.8|>=2.3.0,<2.3.3
Reported by:
GitHub, FriendsOfPHP/security-advisories