Search for packages
| purl | pkg:composer/zendframework/zendframework@2.2.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2g8z-51nu-17hs
Aliases: ZF2015-01 |
Session Fixation Session validation vulnerability. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-grk8-aj34-hqb4
Aliases: ZF2014-01 |
Improper Restriction of XML External Entity Reference Potential XXE/XEE attacks using PHP functions: `simplexml_load_*`, `DOMDocument::loadXML`, and `xml_parse`. |
Affected by 0 other vulnerabilities. |
|
VCID-nbuf-3vcw-mqg4
Aliases: ZF2013-04 |
Information Exposure Potential Remote Address Spoofing Vector in `Zend\Http\PhpEnvironment\RemoteAddress`. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-5bm4-grk6-w7hk | CRLF Injection Potential CRLF injection attacks in mail and HTTP headers. |
CVE-2015-3154
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:36:22.990708+00:00 | GitLab Importer | Fixing | VCID-5bm4-grk6-w7hk | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework/CVE-2015-3154.yml | 38.6.0 |
| 2026-06-02T04:36:20.707648+00:00 | GitLab Importer | Affected by | VCID-2g8z-51nu-17hs | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework/ZF2015-01.yml | 38.6.0 |
| 2026-06-02T04:36:13.906753+00:00 | GitLab Importer | Affected by | VCID-grk8-aj34-hqb4 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework/ZF2014-01.yml | 38.6.0 |
| 2026-06-02T04:36:11.899264+00:00 | GitLab Importer | Affected by | VCID-nbuf-3vcw-mqg4 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework/ZF2013-04.yml | 38.6.0 |