VDB

GCVE-110-MAGEIA-2014-311

GCVE-110-MAGEIA-2014-311
Advisory Published
Vulnetix · Advisory published August 5, 2014
The implementation of the ORDER BY SQL statement in Zend_Db_Select of Zend Framework 1 contains a potential SQL injection when the query string passed contains parentheses (CVE-2014-4914).

Affected Products

VendorProductVersionsPlatforms
Mageiaphp-ZendFramework0 (affected), 1.12.7-1.mga3 (unaffected)
Mageiaphp-ZendFramework0 (affected), 1.12.7-1.mga4 (unaffected)

Browse GCVE Records

72,409 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›