[CRITICAL] Potential Information Disclosure and Insufficient Entropy vulnerability in Zend\Captcha\Word

PKSA-vxf6-mhns-kytt GHSA-mhpx-3rv8-wrjm

Affected package: zendframework/zendframework1

Affected version: >=1.12.0,<1.12.17

Reported by:
GitHub, FriendsOfPHP/security-advisories