Name of the Vulnerable Software and Affected Versions Zend Framework 1 (affected versions not specified)

Description The issue arises from the implementation of the ORDER BY SQL statement in Zend Db Select of Zend Framework 1, which contains a potential SQL injection vulnerability when the query string passed contains parentheses. This occurs because the creation of a new Zend Db Expr() object directly passes the value without filtering the string, allowing malicious SQL code to be executed. For example, the code can be manipulated to drop a table by injecting a drop table statement.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.