Vulners
Lucene search
CVE-2025-2689 yiisoft Yii2 SortableIterator.php getIterator deserialization
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | The vulnerability of the `getIterator` function in the symfony\finder\Iterator\SortableIterator.php file of the PHP framework Yii allows a attacker to execute arbitrary code. | 2 Jun 202500:00 | – | bdu_fstec |
 | CVE-2025-2689 | 24 Mar 202510:02 | – | circl |
 | Yii2 代码问题漏洞 | 24 Mar 202500:00 | – | cnnvd |
 | CVE-2025-2689 | 24 Mar 202507:00 | – | cve |
 | EUVD-2025-7345 | 3 Oct 202520:07 | – | euvd |
 | yiisoft Yii2 Deserialization of Untrusted Data | 24 Mar 202509:34 | – | github |
 | CVE-2025-2689 | 24 Mar 202507:15 | – | nvd |
 | GHSA-88M2-J94X-V4FX yiisoft Yii2 Deserialization of Untrusted Data | 24 Mar 202509:34 | – | osv |
 | CVE-2025-2689 | 26 Mar 202507:20 | – | redhatcve |
 | Deserialization of Untrusted Data | 24 Mar 202509:34 | – | snyk |
10
[
{
"vendor": "yiisoft",
"product": "Yii2",
"versions": [
{
"version": "2.0.0",
"status": "affected"
},
{
"version": "2.0.1",
"status": "affected"
},
{
"version": "2.0.2",
"status": "affected"
},
{
"version": "2.0.3",
"status": "affected"
},
{
"version": "2.0.4",
"status": "affected"
},
{
"version": "2.0.5",
"status": "affected"
},
{
"version": "2.0.6",
"status": "affected"
},
{
"version": "2.0.7",
"status": "affected"
},
{
"version": "2.0.8",
"status": "affected"
},
{
"version": "2.0.9",
"status": "affected"
},
{
"version": "2.0.10",
"status": "affected"
},
{
"version": "2.0.11",
"status": "affected"
},
{
"version": "2.0.12",
"status": "affected"
},
{
"version": "2.0.13",
"status": "affected"
},
{
"version": "2.0.14",
"status": "affected"
},
{
"version": "2.0.15",
"status": "affected"
},
{
"version": "2.0.16",
"status": "affected"
},
{
"version": "2.0.17",
"status": "affected"
},
{
"version": "2.0.18",
"status": "affected"
},
{
"version": "2.0.19",
"status": "affected"
},
{
"version": "2.0.20",
"status": "affected"
},
{
"version": "2.0.21",
"status": "affected"
},
{
"version": "2.0.22",
"status": "affected"
},
{
"version": "2.0.23",
"status": "affected"
},
{
"version": "2.0.24",
"status": "affected"
},
{
"version": "2.0.25",
"status": "affected"
},
{
"version": "2.0.26",
"status": "affected"
},
{
"version": "2.0.27",
"status": "affected"
},
{
"version": "2.0.28",
"status": "affected"
},
{
"version": "2.0.29",
"status": "affected"
},
{
"version": "2.0.30",
"status": "affected"
},
{
"version": "2.0.31",
"status": "affected"
},
{
"version": "2.0.32",
"status": "affected"
},
{
"version": "2.0.33",
"status": "affected"
},
{
"version": "2.0.34",
"status": "affected"
},
{
"version": "2.0.35",
"status": "affected"
},
{
"version": "2.0.36",
"status": "affected"
},
{
"version": "2.0.37",
"status": "affected"
},
{
"version": "2.0.38",
"status": "affected"
},
{
"version": "2.0.39",
"status": "affected"
},
{
"version": "2.0.40",
"status": "affected"
},
{
"version": "2.0.41",
"status": "affected"
},
{
"version": "2.0.42",
"status": "affected"
},
{
"version": "2.0.43",
"status": "affected"
},
{
"version": "2.0.44",
"status": "affected"
},
{
"version": "2.0.45",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| github | www.github.com/gaorenyusi/gaorenyusi/blob/main/Yii2.md |
| vuldb | www.vuldb.com/ |
| vuldb | www.vuldb.com/ |
| vuldb | www.vuldb.com/ |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
24 Mar 2025 07:00Current
CVSS 45.3
CVSS 3.16.3
CVSS 36.3
CVSS 26.5
EPSS0.0011