CVE-2022-31454

Yii 2 v2.0.45 was discovered to contain a cross-site scripting XSS vulnerability via the endpoint /books. NOTE: this is disputed by the vendor because the cve-2022-31454-8e8555c31fd3 page does not describe why /books has a relationship to Yii 2...

CVE-2022-31454

Yii 2 v2.0.45 was discovered to contain a cross-site scripting XSS vulnerability via the endpoint /books. NOTE: this is disputed by the vendor because the cve-2022-31454-8e8555c31fd3 page does not describe why /books has a relationship to Yii 2...

CVE-2022-31454

Yii 2 v2.0.45 was discovered to contain a cross-site scripting XSS vulnerability via the endpoint /books. NOTE: this is disputed by the vendor because the cve-2022-31454-8e8555c31fd3 page does not describe why /books has a relationship to Yii 2...

PT-2023-13037 · Yii2 · Yii2

Name of the Vulnerable Software and Affected Versions: Yii 2 version 2.0.45 Description: A cross-site scripting XSS issue was discovered via the endpoint "/books". This allows for potential malicious script execution. The estimated number of affected devices and real-world incidents are not...

Yii 跨站脚本漏洞

Yii is a component-based, high-performance PHP framework for developing large-scale web applications developed by the YII team. A cross-site scripting vulnerability exists in Yii 2 v2.0.45, which originates from endpoint books containing cross-site scripting XSS...