Zend Framework 2 v2.2.10 Release Notes
Release Date: 2015-02-18 // about 9 years ago-
⚡️ SECURITY UPDATES
- ZF2015-02:
Zend\Db\Adapter\Platform\Postgresql
was incorrectly using\\
to escape double quotes in identifiers and values, which could lead to SQL injection vectors. We have provided patches that use proper escaping. If you use Postgresql with Zend Framework 2, we recommend upgrading immediately.
- ZF2015-02: