Search

Find a vulnerability

Search criteria

    10 vulnerabilities found for Yii2 by yiisoft

    CVE-2026-39850 (GCVE-0-2026-39850)

    Vulnerability from nvd – Published: 2026-05-20 19:51 – Updated: 2026-05-21 13:03
    VLAI
    Title
    Yii 2: Local file inclusion via view parameter name collision
    Summary
    Yii 2 is a PHP application framework. Versions 2.0.54 and prior contain flawed logic in the core view rendering method View::renderPhpFile() that leads to Local File Inclusion. The function calls extract($_params_, EXTR_OVERWRITE) before the require statement that loads the view file. As a result, a caller-controlled _file_ key in the $params array overwrites the internal local variable specifying which file to include, potentially enabling RCE if an attacker can write PHP files through a separate primitive, as well as information disclosure. This issue has been fixed in version 2.0.55.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-98 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: < 2.0.55
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-39850",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-21T03:55:53.898116Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-21T13:03:41.018Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.0.55"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 is a PHP application framework. Versions 2.0.54 and prior contain flawed logic in the core view rendering method View::renderPhpFile() that leads to Local File Inclusion. The function calls extract($_params_, EXTR_OVERWRITE) before the require statement that loads the view file. As a result, a caller-controlled _file_ key in the $params array overwrites the internal local variable specifying which file to include, potentially enabling RCE if an attacker can write PHP files through a separate primitive, as well as information disclosure. This issue has been fixed in version 2.0.55."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-98",
                  "description": "CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program (\u0027PHP Remote File Inclusion\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-20T19:51:03.769Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-5vpg-rj7q-qpw2",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-5vpg-rj7q-qpw2"
            },
            {
              "name": "https://github.com/yiisoft/yii2/commit/109878b491dbffa541032bc99fb5e26d12cd0375",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/109878b491dbffa541032bc99fb5e26d12cd0375"
            }
          ],
          "source": {
            "advisory": "GHSA-5vpg-rj7q-qpw2",
            "discovery": "UNKNOWN"
          },
          "title": "Yii 2: Local file inclusion via view parameter name collision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2026-39850",
        "datePublished": "2026-05-20T19:51:03.769Z",
        "dateReserved": "2026-04-07T19:13:20.378Z",
        "dateUpdated": "2026-05-21T13:03:41.018Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-2690 (GCVE-0-2025-2690)

    Vulnerability from nvd – Published: 2025-03-24 07:31 – Updated: 2025-03-24 12:14
    VLAI
    Title
    yiisoft Yii2 MockClass.php generate deserialization
    Summary
    A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This affects the function Generate of the file phpunit\src\Framework\MockObject\MockClass.php. The manipulation leads to deserialization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.300711 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.300711 signaturepermissions-required
    https://vuldb.com/?submit.521718 third-party-advisory
    https://github.com/gaorenyusi/gaorenyusi/blob/mai… exploit
    Impacted products
    Vendor Product Version
    yiisoft Yii2 Affected: 2.0.0
    Affected: 2.0.1
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.0.4
    Affected: 2.0.5
    Affected: 2.0.6
    Affected: 2.0.7
    Affected: 2.0.8
    Affected: 2.0.9
    Affected: 2.0.10
    Affected: 2.0.11
    Affected: 2.0.12
    Affected: 2.0.13
    Affected: 2.0.14
    Affected: 2.0.15
    Affected: 2.0.16
    Affected: 2.0.17
    Affected: 2.0.18
    Affected: 2.0.19
    Affected: 2.0.20
    Affected: 2.0.21
    Affected: 2.0.22
    Affected: 2.0.23
    Affected: 2.0.24
    Affected: 2.0.25
    Affected: 2.0.26
    Affected: 2.0.27
    Affected: 2.0.28
    Affected: 2.0.29
    Affected: 2.0.30
    Affected: 2.0.31
    Affected: 2.0.32
    Affected: 2.0.33
    Affected: 2.0.34
    Affected: 2.0.35
    Affected: 2.0.36
    Affected: 2.0.37
    Affected: 2.0.38
    Affected: 2.0.39
    Create a notification for this product.
    Credits
    gaorenyusi (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2690",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-24T12:12:44.235025Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-24T12:14:34.960Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.1"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.0.4"
                },
                {
                  "status": "affected",
                  "version": "2.0.5"
                },
                {
                  "status": "affected",
                  "version": "2.0.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.7"
                },
                {
                  "status": "affected",
                  "version": "2.0.8"
                },
                {
                  "status": "affected",
                  "version": "2.0.9"
                },
                {
                  "status": "affected",
                  "version": "2.0.10"
                },
                {
                  "status": "affected",
                  "version": "2.0.11"
                },
                {
                  "status": "affected",
                  "version": "2.0.12"
                },
                {
                  "status": "affected",
                  "version": "2.0.13"
                },
                {
                  "status": "affected",
                  "version": "2.0.14"
                },
                {
                  "status": "affected",
                  "version": "2.0.15"
                },
                {
                  "status": "affected",
                  "version": "2.0.16"
                },
                {
                  "status": "affected",
                  "version": "2.0.17"
                },
                {
                  "status": "affected",
                  "version": "2.0.18"
                },
                {
                  "status": "affected",
                  "version": "2.0.19"
                },
                {
                  "status": "affected",
                  "version": "2.0.20"
                },
                {
                  "status": "affected",
                  "version": "2.0.21"
                },
                {
                  "status": "affected",
                  "version": "2.0.22"
                },
                {
                  "status": "affected",
                  "version": "2.0.23"
                },
                {
                  "status": "affected",
                  "version": "2.0.24"
                },
                {
                  "status": "affected",
                  "version": "2.0.25"
                },
                {
                  "status": "affected",
                  "version": "2.0.26"
                },
                {
                  "status": "affected",
                  "version": "2.0.27"
                },
                {
                  "status": "affected",
                  "version": "2.0.28"
                },
                {
                  "status": "affected",
                  "version": "2.0.29"
                },
                {
                  "status": "affected",
                  "version": "2.0.30"
                },
                {
                  "status": "affected",
                  "version": "2.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.0.32"
                },
                {
                  "status": "affected",
                  "version": "2.0.33"
                },
                {
                  "status": "affected",
                  "version": "2.0.34"
                },
                {
                  "status": "affected",
                  "version": "2.0.35"
                },
                {
                  "status": "affected",
                  "version": "2.0.36"
                },
                {
                  "status": "affected",
                  "version": "2.0.37"
                },
                {
                  "status": "affected",
                  "version": "2.0.38"
                },
                {
                  "status": "affected",
                  "version": "2.0.39"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "gaorenyusi (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This affects the function Generate of the file phpunit\\src\\Framework\\MockObject\\MockClass.php. The manipulation leads to deserialization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used."
            },
            {
              "lang": "de",
              "value": "Es wurde eine kritische Schwachstelle in yiisoft Yii2 bis 2.0.39 gefunden. Hiervon betroffen ist die Funktion Generate der Datei phpunit\\src\\Framework\\MockObject\\MockClass.php. Durch Manipulation mit unbekannten Daten kann eine deserialization-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "Deserialization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-24T07:31:04.253Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-300711 | yiisoft Yii2 MockClass.php generate deserialization",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.300711"
            },
            {
              "name": "VDB-300711 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.300711"
            },
            {
              "name": "Submit #521718 | Yii Software LLC Yii 2.0 \u003c=2.0.39 Deserialization",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.521718"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2-2.md"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-03-23T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-03-23T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-03-23T10:41:34.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "yiisoft Yii2 MockClass.php generate deserialization"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-2690",
        "datePublished": "2025-03-24T07:31:04.253Z",
        "dateReserved": "2025-03-23T09:36:29.048Z",
        "dateUpdated": "2025-03-24T12:14:34.960Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-2689 (GCVE-0-2025-2689)

    Vulnerability from nvd – Published: 2025-03-24 07:00 – Updated: 2025-03-24 12:17
    VLAI
    Title
    yiisoft Yii2 SortableIterator.php getIterator deserialization
    Summary
    A vulnerability, which was classified as critical, has been found in yiisoft Yii2 up to 2.0.45. Affected by this issue is the function getIterator of the file symfony\finder\Iterator\SortableIterator.php. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.300710 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.300710 signaturepermissions-required
    https://vuldb.com/?submit.521709 third-party-advisory
    https://github.com/gaorenyusi/gaorenyusi/blob/mai… exploit
    Impacted products
    Vendor Product Version
    yiisoft Yii2 Affected: 2.0.0
    Affected: 2.0.1
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.0.4
    Affected: 2.0.5
    Affected: 2.0.6
    Affected: 2.0.7
    Affected: 2.0.8
    Affected: 2.0.9
    Affected: 2.0.10
    Affected: 2.0.11
    Affected: 2.0.12
    Affected: 2.0.13
    Affected: 2.0.14
    Affected: 2.0.15
    Affected: 2.0.16
    Affected: 2.0.17
    Affected: 2.0.18
    Affected: 2.0.19
    Affected: 2.0.20
    Affected: 2.0.21
    Affected: 2.0.22
    Affected: 2.0.23
    Affected: 2.0.24
    Affected: 2.0.25
    Affected: 2.0.26
    Affected: 2.0.27
    Affected: 2.0.28
    Affected: 2.0.29
    Affected: 2.0.30
    Affected: 2.0.31
    Affected: 2.0.32
    Affected: 2.0.33
    Affected: 2.0.34
    Affected: 2.0.35
    Affected: 2.0.36
    Affected: 2.0.37
    Affected: 2.0.38
    Affected: 2.0.39
    Affected: 2.0.40
    Affected: 2.0.41
    Affected: 2.0.42
    Affected: 2.0.43
    Affected: 2.0.44
    Affected: 2.0.45
    Create a notification for this product.
    Credits
    gaorenyusi (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2689",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-24T12:16:58.835927Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-24T12:17:13.656Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.1"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.0.4"
                },
                {
                  "status": "affected",
                  "version": "2.0.5"
                },
                {
                  "status": "affected",
                  "version": "2.0.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.7"
                },
                {
                  "status": "affected",
                  "version": "2.0.8"
                },
                {
                  "status": "affected",
                  "version": "2.0.9"
                },
                {
                  "status": "affected",
                  "version": "2.0.10"
                },
                {
                  "status": "affected",
                  "version": "2.0.11"
                },
                {
                  "status": "affected",
                  "version": "2.0.12"
                },
                {
                  "status": "affected",
                  "version": "2.0.13"
                },
                {
                  "status": "affected",
                  "version": "2.0.14"
                },
                {
                  "status": "affected",
                  "version": "2.0.15"
                },
                {
                  "status": "affected",
                  "version": "2.0.16"
                },
                {
                  "status": "affected",
                  "version": "2.0.17"
                },
                {
                  "status": "affected",
                  "version": "2.0.18"
                },
                {
                  "status": "affected",
                  "version": "2.0.19"
                },
                {
                  "status": "affected",
                  "version": "2.0.20"
                },
                {
                  "status": "affected",
                  "version": "2.0.21"
                },
                {
                  "status": "affected",
                  "version": "2.0.22"
                },
                {
                  "status": "affected",
                  "version": "2.0.23"
                },
                {
                  "status": "affected",
                  "version": "2.0.24"
                },
                {
                  "status": "affected",
                  "version": "2.0.25"
                },
                {
                  "status": "affected",
                  "version": "2.0.26"
                },
                {
                  "status": "affected",
                  "version": "2.0.27"
                },
                {
                  "status": "affected",
                  "version": "2.0.28"
                },
                {
                  "status": "affected",
                  "version": "2.0.29"
                },
                {
                  "status": "affected",
                  "version": "2.0.30"
                },
                {
                  "status": "affected",
                  "version": "2.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.0.32"
                },
                {
                  "status": "affected",
                  "version": "2.0.33"
                },
                {
                  "status": "affected",
                  "version": "2.0.34"
                },
                {
                  "status": "affected",
                  "version": "2.0.35"
                },
                {
                  "status": "affected",
                  "version": "2.0.36"
                },
                {
                  "status": "affected",
                  "version": "2.0.37"
                },
                {
                  "status": "affected",
                  "version": "2.0.38"
                },
                {
                  "status": "affected",
                  "version": "2.0.39"
                },
                {
                  "status": "affected",
                  "version": "2.0.40"
                },
                {
                  "status": "affected",
                  "version": "2.0.41"
                },
                {
                  "status": "affected",
                  "version": "2.0.42"
                },
                {
                  "status": "affected",
                  "version": "2.0.43"
                },
                {
                  "status": "affected",
                  "version": "2.0.44"
                },
                {
                  "status": "affected",
                  "version": "2.0.45"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "gaorenyusi (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability, which was classified as critical, has been found in yiisoft Yii2 up to 2.0.45. Affected by this issue is the function getIterator of the file symfony\\finder\\Iterator\\SortableIterator.php. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used."
            },
            {
              "lang": "de",
              "value": "Eine kritische Schwachstelle wurde in yiisoft Yii2 bis 2.0.45 entdeckt. Davon betroffen ist die Funktion getIterator der Datei symfony\\finder\\Iterator\\SortableIterator.php. Durch die Manipulation mit unbekannten Daten kann eine deserialization-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "Deserialization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-24T07:00:07.140Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-300710 | yiisoft Yii2 SortableIterator.php getIterator deserialization",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.300710"
            },
            {
              "name": "VDB-300710 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.300710"
            },
            {
              "name": "Submit #521709 | Yii Software LLC Yii 2.0 \u003c=2.0.45 RCE",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.521709"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2.md"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-03-23T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-03-23T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-03-23T10:41:30.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "yiisoft Yii2 SortableIterator.php getIterator deserialization"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-2689",
        "datePublished": "2025-03-24T07:00:07.140Z",
        "dateReserved": "2025-03-23T09:36:26.587Z",
        "dateUpdated": "2025-03-24T12:17:13.656Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-32877 (GCVE-0-2024-32877)

    Vulnerability from nvd – Published: 2024-05-30 19:52 – Updated: 2024-08-02 02:20
    VLAI
    Title
    Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
    Summary
    Yii 2 is a PHP application framework. During internal penetration testing of a product based on Yii2, users discovered a Cross-site Scripting (XSS) vulnerability within the framework itself. This issue is relevant for the latest version of Yii2 (2.0.49.3). This issue lies in the mechanism for displaying function argument values in the stack trace. The vulnerability manifests when an argument's value exceeds 32 characters. For convenience, argument values exceeding this limit are truncated and displayed with an added "...". The full argument value becomes visible when hovering over it with the mouse, as it is displayed in the title attribute of a span tag. However, the use of a double quote (") allows an attacker to break out of the title attribute's value context and inject their own attributes into the span tag, including malicious JavaScript code through event handlers such as onmousemove. This vulnerability allows an attacker to execute arbitrary JavaScript code in the security context of the victim's site via a specially crafted link. This could lead to the theft of cookies (including httpOnly cookies, which are accessible on the page), content substitution, or complete takeover of user accounts. This issue has been addressed in version 2.0.50. Users are advised to upgrade. There are no known workarounds for this vulnerability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: = 2.0.49.3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-32877",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-03T19:32:59.048904Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:50:35.809Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T02:20:35.655Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj",
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj"
              },
              {
                "name": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615",
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "= 2.0.49.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 is a PHP application framework. During internal penetration testing of a product based on Yii2, users discovered a Cross-site Scripting (XSS) vulnerability within the framework itself. This issue is relevant for the latest version of Yii2 (2.0.49.3). This issue lies in the mechanism for displaying function argument values in the stack trace. The vulnerability manifests when an argument\u0027s value exceeds 32 characters. For convenience, argument values exceeding this limit are truncated and displayed with an added \"...\". The full argument value becomes visible when hovering over it with the mouse, as it is displayed in the title attribute of a span tag. However, the use of a double quote (\") allows an attacker to break out of the title attribute\u0027s value context and inject their own attributes into the span tag, including malicious JavaScript code through event handlers such as onmousemove. This vulnerability allows an attacker to execute arbitrary JavaScript code in the security context of the victim\u0027s site via a specially crafted link. This could lead to the theft of cookies (including httpOnly cookies, which are accessible on the page), content substitution, or complete takeover of user accounts. This issue has been addressed in version 2.0.50. Users are advised to upgrade. There are no known workarounds for this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-30T19:52:58.418Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj"
            },
            {
              "name": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615"
            }
          ],
          "source": {
            "advisory": "GHSA-qg5r-95m4-mjgj",
            "discovery": "UNKNOWN"
          },
          "title": "Reflected Cross-site Scripting in yiisoft/yii2 Debug mode"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2024-32877",
        "datePublished": "2024-05-30T19:52:58.418Z",
        "dateReserved": "2024-04-19T14:07:11.230Z",
        "dateUpdated": "2024-08-02T02:20:35.655Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-15148 (GCVE-0-2020-15148)

    Vulnerability from nvd – Published: 2020-09-15 18:25 – Updated: 2024-08-04 13:08
    VLAI
    Title
    Unsafe deserialization in Yii 2
    Summary
    Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory.
    CWE
    • CWE-502 - {"CWE-502":"Deserialization of Untrusted Data"}
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: < 2.0.38
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T13:08:21.907Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.0.38"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "{\"CWE-502\":\"Deserialization of Untrusted Data\"}",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-09-15T18:25:12.000Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
            }
          ],
          "source": {
            "advisory": "GHSA-699q-wcff-g9mj",
            "discovery": "UNKNOWN"
          },
          "title": "Unsafe deserialization in Yii 2",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security-advisories@github.com",
              "ID": "CVE-2020-15148",
              "STATE": "PUBLIC",
              "TITLE": "Unsafe deserialization in Yii 2"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "yii2",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "\u003c 2.0.38"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "yiisoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory."
                }
              ]
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "{\"CWE-502\":\"Deserialization of Untrusted Data\"}"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj",
                  "refsource": "CONFIRM",
                  "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
                },
                {
                  "name": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99",
                  "refsource": "MISC",
                  "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
                }
              ]
            },
            "source": {
              "advisory": "GHSA-699q-wcff-g9mj",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2020-15148",
        "datePublished": "2020-09-15T18:25:12.000Z",
        "dateReserved": "2020-06-25T00:00:00.000Z",
        "dateUpdated": "2024-08-04T13:08:21.907Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-39850 (GCVE-0-2026-39850)

    Vulnerability from cvelistv5 – Published: 2026-05-20 19:51 – Updated: 2026-05-21 13:03
    VLAI
    Title
    Yii 2: Local file inclusion via view parameter name collision
    Summary
    Yii 2 is a PHP application framework. Versions 2.0.54 and prior contain flawed logic in the core view rendering method View::renderPhpFile() that leads to Local File Inclusion. The function calls extract($_params_, EXTR_OVERWRITE) before the require statement that loads the view file. As a result, a caller-controlled _file_ key in the $params array overwrites the internal local variable specifying which file to include, potentially enabling RCE if an attacker can write PHP files through a separate primitive, as well as information disclosure. This issue has been fixed in version 2.0.55.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    • CWE-98 - Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: < 2.0.55
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-39850",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-21T03:55:53.898116Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-21T13:03:41.018Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.0.55"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 is a PHP application framework. Versions 2.0.54 and prior contain flawed logic in the core view rendering method View::renderPhpFile() that leads to Local File Inclusion. The function calls extract($_params_, EXTR_OVERWRITE) before the require statement that loads the view file. As a result, a caller-controlled _file_ key in the $params array overwrites the internal local variable specifying which file to include, potentially enabling RCE if an attacker can write PHP files through a separate primitive, as well as information disclosure. This issue has been fixed in version 2.0.55."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20: Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-98",
                  "description": "CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program (\u0027PHP Remote File Inclusion\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-20T19:51:03.769Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-5vpg-rj7q-qpw2",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-5vpg-rj7q-qpw2"
            },
            {
              "name": "https://github.com/yiisoft/yii2/commit/109878b491dbffa541032bc99fb5e26d12cd0375",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/109878b491dbffa541032bc99fb5e26d12cd0375"
            }
          ],
          "source": {
            "advisory": "GHSA-5vpg-rj7q-qpw2",
            "discovery": "UNKNOWN"
          },
          "title": "Yii 2: Local file inclusion via view parameter name collision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2026-39850",
        "datePublished": "2026-05-20T19:51:03.769Z",
        "dateReserved": "2026-04-07T19:13:20.378Z",
        "dateUpdated": "2026-05-21T13:03:41.018Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-2690 (GCVE-0-2025-2690)

    Vulnerability from cvelistv5 – Published: 2025-03-24 07:31 – Updated: 2025-03-24 12:14
    VLAI
    Title
    yiisoft Yii2 MockClass.php generate deserialization
    Summary
    A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This affects the function Generate of the file phpunit\src\Framework\MockObject\MockClass.php. The manipulation leads to deserialization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.300711 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.300711 signaturepermissions-required
    https://vuldb.com/?submit.521718 third-party-advisory
    https://github.com/gaorenyusi/gaorenyusi/blob/mai… exploit
    Impacted products
    Vendor Product Version
    yiisoft Yii2 Affected: 2.0.0
    Affected: 2.0.1
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.0.4
    Affected: 2.0.5
    Affected: 2.0.6
    Affected: 2.0.7
    Affected: 2.0.8
    Affected: 2.0.9
    Affected: 2.0.10
    Affected: 2.0.11
    Affected: 2.0.12
    Affected: 2.0.13
    Affected: 2.0.14
    Affected: 2.0.15
    Affected: 2.0.16
    Affected: 2.0.17
    Affected: 2.0.18
    Affected: 2.0.19
    Affected: 2.0.20
    Affected: 2.0.21
    Affected: 2.0.22
    Affected: 2.0.23
    Affected: 2.0.24
    Affected: 2.0.25
    Affected: 2.0.26
    Affected: 2.0.27
    Affected: 2.0.28
    Affected: 2.0.29
    Affected: 2.0.30
    Affected: 2.0.31
    Affected: 2.0.32
    Affected: 2.0.33
    Affected: 2.0.34
    Affected: 2.0.35
    Affected: 2.0.36
    Affected: 2.0.37
    Affected: 2.0.38
    Affected: 2.0.39
    Create a notification for this product.
    Credits
    gaorenyusi (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2690",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-24T12:12:44.235025Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-24T12:14:34.960Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.1"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.0.4"
                },
                {
                  "status": "affected",
                  "version": "2.0.5"
                },
                {
                  "status": "affected",
                  "version": "2.0.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.7"
                },
                {
                  "status": "affected",
                  "version": "2.0.8"
                },
                {
                  "status": "affected",
                  "version": "2.0.9"
                },
                {
                  "status": "affected",
                  "version": "2.0.10"
                },
                {
                  "status": "affected",
                  "version": "2.0.11"
                },
                {
                  "status": "affected",
                  "version": "2.0.12"
                },
                {
                  "status": "affected",
                  "version": "2.0.13"
                },
                {
                  "status": "affected",
                  "version": "2.0.14"
                },
                {
                  "status": "affected",
                  "version": "2.0.15"
                },
                {
                  "status": "affected",
                  "version": "2.0.16"
                },
                {
                  "status": "affected",
                  "version": "2.0.17"
                },
                {
                  "status": "affected",
                  "version": "2.0.18"
                },
                {
                  "status": "affected",
                  "version": "2.0.19"
                },
                {
                  "status": "affected",
                  "version": "2.0.20"
                },
                {
                  "status": "affected",
                  "version": "2.0.21"
                },
                {
                  "status": "affected",
                  "version": "2.0.22"
                },
                {
                  "status": "affected",
                  "version": "2.0.23"
                },
                {
                  "status": "affected",
                  "version": "2.0.24"
                },
                {
                  "status": "affected",
                  "version": "2.0.25"
                },
                {
                  "status": "affected",
                  "version": "2.0.26"
                },
                {
                  "status": "affected",
                  "version": "2.0.27"
                },
                {
                  "status": "affected",
                  "version": "2.0.28"
                },
                {
                  "status": "affected",
                  "version": "2.0.29"
                },
                {
                  "status": "affected",
                  "version": "2.0.30"
                },
                {
                  "status": "affected",
                  "version": "2.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.0.32"
                },
                {
                  "status": "affected",
                  "version": "2.0.33"
                },
                {
                  "status": "affected",
                  "version": "2.0.34"
                },
                {
                  "status": "affected",
                  "version": "2.0.35"
                },
                {
                  "status": "affected",
                  "version": "2.0.36"
                },
                {
                  "status": "affected",
                  "version": "2.0.37"
                },
                {
                  "status": "affected",
                  "version": "2.0.38"
                },
                {
                  "status": "affected",
                  "version": "2.0.39"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "gaorenyusi (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This affects the function Generate of the file phpunit\\src\\Framework\\MockObject\\MockClass.php. The manipulation leads to deserialization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used."
            },
            {
              "lang": "de",
              "value": "Es wurde eine kritische Schwachstelle in yiisoft Yii2 bis 2.0.39 gefunden. Hiervon betroffen ist die Funktion Generate der Datei phpunit\\src\\Framework\\MockObject\\MockClass.php. Durch Manipulation mit unbekannten Daten kann eine deserialization-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "Deserialization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-24T07:31:04.253Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-300711 | yiisoft Yii2 MockClass.php generate deserialization",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.300711"
            },
            {
              "name": "VDB-300711 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.300711"
            },
            {
              "name": "Submit #521718 | Yii Software LLC Yii 2.0 \u003c=2.0.39 Deserialization",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.521718"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2-2.md"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-03-23T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-03-23T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-03-23T10:41:34.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "yiisoft Yii2 MockClass.php generate deserialization"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-2690",
        "datePublished": "2025-03-24T07:31:04.253Z",
        "dateReserved": "2025-03-23T09:36:29.048Z",
        "dateUpdated": "2025-03-24T12:14:34.960Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-2689 (GCVE-0-2025-2689)

    Vulnerability from cvelistv5 – Published: 2025-03-24 07:00 – Updated: 2025-03-24 12:17
    VLAI
    Title
    yiisoft Yii2 SortableIterator.php getIterator deserialization
    Summary
    A vulnerability, which was classified as critical, has been found in yiisoft Yii2 up to 2.0.45. Affected by this issue is the function getIterator of the file symfony\finder\Iterator\SortableIterator.php. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.300710 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.300710 signaturepermissions-required
    https://vuldb.com/?submit.521709 third-party-advisory
    https://github.com/gaorenyusi/gaorenyusi/blob/mai… exploit
    Impacted products
    Vendor Product Version
    yiisoft Yii2 Affected: 2.0.0
    Affected: 2.0.1
    Affected: 2.0.2
    Affected: 2.0.3
    Affected: 2.0.4
    Affected: 2.0.5
    Affected: 2.0.6
    Affected: 2.0.7
    Affected: 2.0.8
    Affected: 2.0.9
    Affected: 2.0.10
    Affected: 2.0.11
    Affected: 2.0.12
    Affected: 2.0.13
    Affected: 2.0.14
    Affected: 2.0.15
    Affected: 2.0.16
    Affected: 2.0.17
    Affected: 2.0.18
    Affected: 2.0.19
    Affected: 2.0.20
    Affected: 2.0.21
    Affected: 2.0.22
    Affected: 2.0.23
    Affected: 2.0.24
    Affected: 2.0.25
    Affected: 2.0.26
    Affected: 2.0.27
    Affected: 2.0.28
    Affected: 2.0.29
    Affected: 2.0.30
    Affected: 2.0.31
    Affected: 2.0.32
    Affected: 2.0.33
    Affected: 2.0.34
    Affected: 2.0.35
    Affected: 2.0.36
    Affected: 2.0.37
    Affected: 2.0.38
    Affected: 2.0.39
    Affected: 2.0.40
    Affected: 2.0.41
    Affected: 2.0.42
    Affected: 2.0.43
    Affected: 2.0.44
    Affected: 2.0.45
    Create a notification for this product.
    Credits
    gaorenyusi (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-2689",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-03-24T12:16:58.835927Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-24T12:17:13.656Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0.0"
                },
                {
                  "status": "affected",
                  "version": "2.0.1"
                },
                {
                  "status": "affected",
                  "version": "2.0.2"
                },
                {
                  "status": "affected",
                  "version": "2.0.3"
                },
                {
                  "status": "affected",
                  "version": "2.0.4"
                },
                {
                  "status": "affected",
                  "version": "2.0.5"
                },
                {
                  "status": "affected",
                  "version": "2.0.6"
                },
                {
                  "status": "affected",
                  "version": "2.0.7"
                },
                {
                  "status": "affected",
                  "version": "2.0.8"
                },
                {
                  "status": "affected",
                  "version": "2.0.9"
                },
                {
                  "status": "affected",
                  "version": "2.0.10"
                },
                {
                  "status": "affected",
                  "version": "2.0.11"
                },
                {
                  "status": "affected",
                  "version": "2.0.12"
                },
                {
                  "status": "affected",
                  "version": "2.0.13"
                },
                {
                  "status": "affected",
                  "version": "2.0.14"
                },
                {
                  "status": "affected",
                  "version": "2.0.15"
                },
                {
                  "status": "affected",
                  "version": "2.0.16"
                },
                {
                  "status": "affected",
                  "version": "2.0.17"
                },
                {
                  "status": "affected",
                  "version": "2.0.18"
                },
                {
                  "status": "affected",
                  "version": "2.0.19"
                },
                {
                  "status": "affected",
                  "version": "2.0.20"
                },
                {
                  "status": "affected",
                  "version": "2.0.21"
                },
                {
                  "status": "affected",
                  "version": "2.0.22"
                },
                {
                  "status": "affected",
                  "version": "2.0.23"
                },
                {
                  "status": "affected",
                  "version": "2.0.24"
                },
                {
                  "status": "affected",
                  "version": "2.0.25"
                },
                {
                  "status": "affected",
                  "version": "2.0.26"
                },
                {
                  "status": "affected",
                  "version": "2.0.27"
                },
                {
                  "status": "affected",
                  "version": "2.0.28"
                },
                {
                  "status": "affected",
                  "version": "2.0.29"
                },
                {
                  "status": "affected",
                  "version": "2.0.30"
                },
                {
                  "status": "affected",
                  "version": "2.0.31"
                },
                {
                  "status": "affected",
                  "version": "2.0.32"
                },
                {
                  "status": "affected",
                  "version": "2.0.33"
                },
                {
                  "status": "affected",
                  "version": "2.0.34"
                },
                {
                  "status": "affected",
                  "version": "2.0.35"
                },
                {
                  "status": "affected",
                  "version": "2.0.36"
                },
                {
                  "status": "affected",
                  "version": "2.0.37"
                },
                {
                  "status": "affected",
                  "version": "2.0.38"
                },
                {
                  "status": "affected",
                  "version": "2.0.39"
                },
                {
                  "status": "affected",
                  "version": "2.0.40"
                },
                {
                  "status": "affected",
                  "version": "2.0.41"
                },
                {
                  "status": "affected",
                  "version": "2.0.42"
                },
                {
                  "status": "affected",
                  "version": "2.0.43"
                },
                {
                  "status": "affected",
                  "version": "2.0.44"
                },
                {
                  "status": "affected",
                  "version": "2.0.45"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "gaorenyusi (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability, which was classified as critical, has been found in yiisoft Yii2 up to 2.0.45. Affected by this issue is the function getIterator of the file symfony\\finder\\Iterator\\SortableIterator.php. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used."
            },
            {
              "lang": "de",
              "value": "Eine kritische Schwachstelle wurde in yiisoft Yii2 bis 2.0.45 entdeckt. Davon betroffen ist die Funktion getIterator der Datei symfony\\finder\\Iterator\\SortableIterator.php. Durch die Manipulation mit unbekannten Daten kann eine deserialization-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "Deserialization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-03-24T07:00:07.140Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-300710 | yiisoft Yii2 SortableIterator.php getIterator deserialization",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.300710"
            },
            {
              "name": "VDB-300710 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.300710"
            },
            {
              "name": "Submit #521709 | Yii Software LLC Yii 2.0 \u003c=2.0.45 RCE",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.521709"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2.md"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-03-23T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-03-23T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-03-23T10:41:30.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "yiisoft Yii2 SortableIterator.php getIterator deserialization"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-2689",
        "datePublished": "2025-03-24T07:00:07.140Z",
        "dateReserved": "2025-03-23T09:36:26.587Z",
        "dateUpdated": "2025-03-24T12:17:13.656Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-32877 (GCVE-0-2024-32877)

    Vulnerability from cvelistv5 – Published: 2024-05-30 19:52 – Updated: 2024-08-02 02:20
    VLAI
    Title
    Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
    Summary
    Yii 2 is a PHP application framework. During internal penetration testing of a product based on Yii2, users discovered a Cross-site Scripting (XSS) vulnerability within the framework itself. This issue is relevant for the latest version of Yii2 (2.0.49.3). This issue lies in the mechanism for displaying function argument values in the stack trace. The vulnerability manifests when an argument's value exceeds 32 characters. For convenience, argument values exceeding this limit are truncated and displayed with an added "...". The full argument value becomes visible when hovering over it with the mouse, as it is displayed in the title attribute of a span tag. However, the use of a double quote (") allows an attacker to break out of the title attribute's value context and inject their own attributes into the span tag, including malicious JavaScript code through event handlers such as onmousemove. This vulnerability allows an attacker to execute arbitrary JavaScript code in the security context of the victim's site via a specially crafted link. This could lead to the theft of cookies (including httpOnly cookies, which are accessible on the page), content substitution, or complete takeover of user accounts. This issue has been addressed in version 2.0.50. Users are advised to upgrade. There are no known workarounds for this vulnerability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: = 2.0.49.3
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-32877",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-03T19:32:59.048904Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:50:35.809Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T02:20:35.655Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj",
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj"
              },
              {
                "name": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615",
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "= 2.0.49.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 is a PHP application framework. During internal penetration testing of a product based on Yii2, users discovered a Cross-site Scripting (XSS) vulnerability within the framework itself. This issue is relevant for the latest version of Yii2 (2.0.49.3). This issue lies in the mechanism for displaying function argument values in the stack trace. The vulnerability manifests when an argument\u0027s value exceeds 32 characters. For convenience, argument values exceeding this limit are truncated and displayed with an added \"...\". The full argument value becomes visible when hovering over it with the mouse, as it is displayed in the title attribute of a span tag. However, the use of a double quote (\") allows an attacker to break out of the title attribute\u0027s value context and inject their own attributes into the span tag, including malicious JavaScript code through event handlers such as onmousemove. This vulnerability allows an attacker to execute arbitrary JavaScript code in the security context of the victim\u0027s site via a specially crafted link. This could lead to the theft of cookies (including httpOnly cookies, which are accessible on the page), content substitution, or complete takeover of user accounts. This issue has been addressed in version 2.0.50. Users are advised to upgrade. There are no known workarounds for this vulnerability."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-30T19:52:58.418Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj"
            },
            {
              "name": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615",
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615"
            }
          ],
          "source": {
            "advisory": "GHSA-qg5r-95m4-mjgj",
            "discovery": "UNKNOWN"
          },
          "title": "Reflected Cross-site Scripting in yiisoft/yii2 Debug mode"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2024-32877",
        "datePublished": "2024-05-30T19:52:58.418Z",
        "dateReserved": "2024-04-19T14:07:11.230Z",
        "dateUpdated": "2024-08-02T02:20:35.655Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-15148 (GCVE-0-2020-15148)

    Vulnerability from cvelistv5 – Published: 2020-09-15 18:25 – Updated: 2024-08-04 13:08
    VLAI
    Title
    Unsafe deserialization in Yii 2
    Summary
    Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory.
    CWE
    • CWE-502 - {"CWE-502":"Deserialization of Untrusted Data"}
    Assigner
    References
    Impacted products
    Vendor Product Version
    yiisoft yii2 Affected: < 2.0.38
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T13:08:21.907Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "yii2",
              "vendor": "yiisoft",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 2.0.38"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-502",
                  "description": "{\"CWE-502\":\"Deserialization of Untrusted Data\"}",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-09-15T18:25:12.000Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
            }
          ],
          "source": {
            "advisory": "GHSA-699q-wcff-g9mj",
            "discovery": "UNKNOWN"
          },
          "title": "Unsafe deserialization in Yii 2",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security-advisories@github.com",
              "ID": "CVE-2020-15148",
              "STATE": "PUBLIC",
              "TITLE": "Unsafe deserialization in Yii 2"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "yii2",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "\u003c 2.0.38"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "yiisoft"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaround without upgrading is available in the linked advisory."
                }
              ]
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.9,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "{\"CWE-502\":\"Deserialization of Untrusted Data\"}"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj",
                  "refsource": "CONFIRM",
                  "url": "https://github.com/yiisoft/yii2/security/advisories/GHSA-699q-wcff-g9mj"
                },
                {
                  "name": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99",
                  "refsource": "MISC",
                  "url": "https://github.com/yiisoft/yii2/commit/9abccb96d7c5ddb569f92d1a748f50ee9b3e2b99"
                }
              ]
            },
            "source": {
              "advisory": "GHSA-699q-wcff-g9mj",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2020-15148",
        "datePublished": "2020-09-15T18:25:12.000Z",
        "dateReserved": "2020-06-25T00:00:00.000Z",
        "dateUpdated": "2024-08-04T13:08:21.907Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }