Lucene search

CVE-2024-32877

🗓️ 30 May 2024 20:08:15Reported by GitHub_MType

Yii 2 PHP framework XSS vulnerability, version 2.0.49.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
OSV	CVE-2024-32877	30 May 202420:15	–	osv
OSV	GHSA-QG5R-95M4-MJGJ Reflected Cross-site Scripting in yiisoft/yii2 Debug mode	2 Jun 202422:27	–	osv
Cvelist	CVE-2024-32877 Reflected Cross-site Scripting in yiisoft/yii2 Debug mode	30 May 202419:52	–	cvelist
NVD	CVE-2024-32877	30 May 202420:15	–	nvd
Veracode	Cross-Site Scripting (XSS)	5 Jun 202406:04	–	veracode
Github Security Blog	Reflected Cross-site Scripting in yiisoft/yii2 Debug mode	2 Jun 202422:27	–	github
Vulnrichment	CVE-2024-32877 Reflected Cross-site Scripting in yiisoft/yii2 Debug mode	30 May 202419:52	–	vulnrichment

Vulners

Node

yiisoft yii2

[
  {
    "vendor": "yiisoft",
    "product": "yii2",
    "versions": [
      {
        "version": "= 2.0.49.3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/yiisoft/yii2/commit/f7baab16e79f2369d4838ab5653c3c07ecf26615
github	www.github.com/yiisoft/yii2/security/advisories/GHSA-qg5r-95m4-mjgj

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 May 2024 20:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.2

EPSS0.00319

SSVC

CWE-79