Yiiframework Yii 2.0.42

CPE Details

Yiiframework Yii 2.0.42
yiiframework
yii
2.0.42
2021-08-16
11h49 +00:00
2021-08-19
12h53 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:yiiframework:yii:2.0.42:*:*:*:*:*:*:*

Informations

Vendor

yiiframework

Product

yii

Version

2.0.42

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-2689 2025-03-24 07h00 +00:00 A vulnerability, which was classified as critical, has been found in yiisoft Yii2 up to 2.0.45. Affected by this issue is the function getIterator of the file symfony\finder\Iterator\SortableIterator.php. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
5.3
Medium
CVE-2023-26750 2023-04-04 00h00 +00:00 SQL injection vulnerability found in Yii Framework Yii 2 Framework before v.2.0.47 allows the a remote attacker to execute arbitrary code via the runAction function. NOTE: the software maintainer's position is that the vulnerability is in third-party code, not in the framework.
9.8
Critical
CVE-2021-3692 2021-08-10 13h36 +00:00 yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator
5.3
Medium
CVE-2021-3689 2021-08-10 08h21 +00:00 yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator
7.5
High