CVE-2016-6233

Description

Zend Framework Allows SQL Injection

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

References

• http://www.securityfocus.com/bid/91802
• https://framework.zend.com/security/advisory/ZF2016-02
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2JUKFTI6ABK7ZN7IEAGPCLAHCFANMID2/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N27AV6AL6B4KGEP3VIMIHQ5LFAKF5FTU/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UR5HXNGIUSSIZKMSZYMPBEPZEZTYFTIT/
• https://security.gentoo.org/glsa/201804-10
• https://nvd.nist.gov/vuln/detail/CVE-2016-6233
• https://github.com/FriendsOfPHP/security-advisories/blob/master/zendframework/zendframework1/CVE-2016-6233.yaml
• https://github.com/zendframework/zendframework
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2JUKFTI6ABK7ZN7IEAGPCLAHCFANMID2
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/N27AV6AL6B4KGEP3VIMIHQ5LFAKF5FTU
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UR5HXNGIUSSIZKMSZYMPBEPZEZTYFTIT
• https://web.archive.org/web/20210123152547/http://www.securityfocus.com/bid/91802

CWEs

CWE-89