An XSS vulnerability exists in framework/views/errorHandler/exception.php in Yii Framework 2.0.12 affecting the exception screen when debug mode is enabled, because $exception->errorInfo is mishandled.
CPE | Name | Operator | Version |
---|---|---|---|
yiisoft/yii2 | eq | 2.0.12 | |
yiisoft/yii2-dev | eq | 2.0.12.2 | |
yiisoft/yii2-dev | eq | 2.0.12 | |
yiisoft/yii2-dev | eq | 2.0.12.1 | |
yiisoft/yii2 | eq | 2.0.12.2 | |
yiisoft/yii2 | eq | 2.0.12.1 |