[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99536

 
 

909

 
 

80128

 
 

109

Paid content will be excluded from the download.


Download | Alert*


CVE-2014-8088
The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with a null byte, which triggers an unauthenticated bind.

CVE-2014-4914
The Zend_Db_Select::order function in Zend Framework before 1.12.7 does not properly handle parentheses, which allows remote attackers to conduct SQL injection attacks via unspecified vectors.

*OVAL
oval:org.secpod.oval:def:107814
CPE    8
cpe:/o:fedora_project:fedora:19
cpe:/a:zend:php-zendframework
cpe:/a:zend:zend_framework:1.12.0
cpe:/a:zend:zend_framework:1.12.0:rc4
...

© 2013 SecPod Technologies