FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  482553
Date:      2018-10-20
Time:      14:57:16Z
Committer: sunpoet

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
d3324fdb-6bf0-11e5-bc5e-00505699053eZendFramework1 -- SQL injection vulnerability

Zend Framework developers report:

The PDO adapters of Zend Framework 1 do not filter null bytes values in SQL statements. A PDO adapter can treat null bytes in a query as a string terminator, allowing an attacker to add arbitrary SQL following a null byte, and thus create a SQL injection.

Discovery 2015-09-15
Entry 2015-10-06
Modified 2015-10-12
lt 1.12.16