Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

yiisoft/yii2

packagist

Yii PHP Framework Version 2

View on github.com · View on packagist.org

Security Advisories for yiisoft/yii2 in packagist

Critical
7 months ago

yiisoft/yii2 Mishandles the Attaching of Behavior Defined by a `__class` Array Key GSA_kwCzR0hTQS1nZ3dnLWNtd3AtNDZyNc4ABGqh

packagist yiisoft/yii2
High
over 1 year ago

Unsafe Reflection in base Component class in yiisoft/yii2 GSA_kwCzR0hTQS1jamNjLXA2N20tN3F4bc4AA8mV

packagist yiisoft/yii2
Moderate
over 1 year ago

Reflected Cross-site Scripting in yiisoft/yii2 Debug mode GSA_kwCzR0hTQS1xZzVyLTk1bTQtbWpnas4AA8mM

packagist yiisoft/yii2
Critical
about 2 years ago

Yii2 allows attackers to execute any local .php file via a relative path in the view parameter GSA_kwCzR0hTQS03Y2ZxLTcydzItMjRxNM4AA1_W

packagist yiisoft/yii2
Moderate
over 3 years ago

Yii Framework Cross-site Scripting Vulnerability GSA_kwCzR0hTQS13Mnh4LWpwOWYtZ3A4Z84AActh

packagist yiisoft/yii2
Moderate
over 3 years ago

Yii Framework Reflected XSS GSA_kwCzR0hTQS00eGg5LTV2aDgtM3A1OM4AAbo9

packagist yiisoft/yii2
Moderate
over 3 years ago

Yii Cross-site Scripting Framework vulnerability GSA_kwCzR0hTQS00YzY0LXc4ZmcteGNxMs4AAbIO

packagist yiisoft/yii2, yiisoft/yii2-dev
High
over 3 years ago

Yii Framework Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS1jd2htLTI3MnAtM3dqOc4AAXbQ

packagist yiisoft/yii2-dev, yiisoft/yii2
Moderate
over 3 years ago

Yii Incorrectly Implements CORS GSA_kwCzR0hTQS1jcjZyLTZ4bTktd3cyMs4AAUL8

packagist yiisoft/yii2
High
over 3 years ago

Yii Framework reflected Cross-site Scripting GSA_kwCzR0hTQS04Z2ZxLWM1NG0tM3JmNs3_HQ

packagist yiisoft/yii2
High
about 5 years ago

Unsafe deserialization in Yii 2 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY5OXEtd2NmZi1nOW1q

packagist yiisoft/yii2

Filter by Severity

Moderate 5 High 4 Critical 2