Package impact
Packagist / yiisoft/yii
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-4672 | high | — | 7.5 | 12y ago | Yii PHP Framework arbitrary PHP scripts execution | |||
| CVE-2025-32027 | unknown | — | — | 1y ago | Yii does not prevent XSS in scenarios where fallback error renderer is used | |||
| CVE-2023-47130 | unknown | — | — | 3y ago | yiisoft/yii deserializing untrusted user input can lead to remote code execution | |||
| CVE-2022-41922 | unknown | — | — | 4y ago | Prevent RCE when deserializing untrusted user input |