Package impact
Packagist / yiisoft/yii2-dev
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2017-11516 | medium | 6.1 | 6.1 | 9y ago | Yii Cross-site Scripting Framework vulnerability | |
| CVE-2025-2689 | unknown | — | — | 1y ago | yiisoft Yii2 Deserialization of Untrusted Data | |
| CVE-2018-7269 | unknown | — | — | 4y ago | Yii SQL injection vulnerability | |
| CVE-2018-8074 | unknown | — | — | 4y ago | Yii Framework Code Injection | |
| CVE-2018-6009 | unknown | — | — | 4y ago | Yii Framework Cross-Site Request Forgery (CSRF) | |
| CVE-2021-3689 | unknown | — | — | 5y ago | Use of Insufficiently Random Values in yiisoft/yii2-dev | |
| CVE-2021-3692 | unknown | — | — | 5y ago | Use of Cryptographically Weak Pseudo-Random Number Generator in yiisoft/yii2-dev |