Lucene search
GoogleOSV:GHSA-4C64-W8FG-XCQ2HistoryMay 17, 2022 - 2:26 a.m.
Yii Cross-site Scripting Framework vulnerability
2022-05-1702:26:08
Google
osv.dev
4
An XSS vulnerability exists in framework/views/errorHandler/exception.php in Yii Framework 2.0.12 affecting the exception screen when debug mode is enabled, because $exception->errorInfo is mishandled.
| CPE | Name | Operator | Version |
|---|---|---|---|
| yiisoft/yii2 | eq | 2.0.12 | |
| yiisoft/yii2-dev | eq | 2.0.12.2 | |
| yiisoft/yii2-dev | eq | 2.0.12 | |
| yiisoft/yii2-dev | eq | 2.0.12.1 | |
| yiisoft/yii2 | eq | 2.0.12.2 | |
| yiisoft/yii2 | eq | 2.0.12.1 |
Related
cve
cve
CVE-2017-11516
2017-07-21 19:29:00
osv
osv
CVE-2017-11516
2017-07-21 19:29:00
cvelist
cvelist
CVE-2017-11516
2017-07-21 19:00:00
nvd
nvd
CVE-2017-11516
2017-07-21 19:29:00
github
github
Yii Cross-site Scripting Framework vulnerability
2022-05-17 02:26:08
veracode
veracode
Cross-site Scripting (XSS)
2017-07-25 02:46:22
prion
prion
Cross site scripting
2017-07-21 19:29:00