Package impact
Packagist / yiisoft/yii2-dev
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-11516 | medium | 6.1 | 6.1 | 9y ago | Yii Cross-site Scripting Framework vulnerability | |||
| CVE-2025-2689 | unknown | — | — | 1y ago | yiisoft Yii2 Deserialization of Untrusted Data | |||
| CVE-2018-7269 | unknown | — | — | 4y ago | Yii SQL injection vulnerability | |||
| CVE-2018-8074 | unknown | — | — | 4y ago | Yii Framework Code Injection | |||
| CVE-2018-6009 | unknown | — | — | 4y ago | Yii Framework Cross-Site Request Forgery (CSRF) | |||
| CVE-2021-3689 | unknown | — | — | 5y ago | Use of Insufficiently Random Values in yiisoft/yii2-dev | |||
| CVE-2021-3692 | unknown | — | — | 5y ago | Use of Cryptographically Weak Pseudo-Random Number Generator in yiisoft/yii2-dev |