Search for vulnerabilities
| Vulnerability ID | VCID-e2nf-wm5h-fqav |
| Aliases |
ZF2009-01
|
| Summary | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') File Inclusion vector in `Zend_View::setScriptPath()` and `render()`. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| System | Score | Found at |
|---|---|---|
| There are no known severity scores. | ||
| Reference id | Reference type | URL |
|---|---|---|
| https://framework.zend.com/security/advisory/ZF2009-01 |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-02T04:36:02.935725+00:00 | GitLab Importer | Import | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/zendframework/zendframework1/ZF2009-01.yml | 38.6.0 |