Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/zendframework/zendframework@1.12.19
purl pkg:composer/zendframework/zendframework@1.12.19
Next non-vulnerable version 1.12.20
Latest non-vulnerable version 2.5.2
Risk
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-bjvu-jg9w-mqdd
Aliases:
CVE-2016-6233
SQL Injection The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework might allow remote attackers to conduct SQL injection attacks via vectors related to use of the character pattern `[\w]*` in a regular expression.
2.0.0
Affected by 19 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:36:47.947163+00:00 GitLab Importer Affected by VCID-bjvu-jg9w-mqdd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework/CVE-2016-6233.yml 38.6.0