Security Advisories - PKSA-jgk2-8mxq-5256 - Packagist

PKSA-jgk2-8mxq-5256 Security Advisory

[MEDIUM] Potential Information Disclosure and Insufficient Entropy vulnerabilities in Zend\Math\Rand and Zend\Validate\Csrf Components

PKSA-jgk2-8mxq-5256 GHSA-2fhr-8r8r-qp56

Affected package: zendframework/zendframework

Affected version: >=2.0.0,<2.0.8|>=2.1.0,<2.1.4

Reported by:
GitHub, FriendsOfPHP/security-advisories