4 matches found
CVE-2015-5467
web\ViewAction in Yii aka Yii2 2.x before 2.0.5 allows attackers to execute any local .php file via a relative path in the view parameeter...
CVE-2015-5467
web\ViewAction in Yii aka Yii2 2.x before 2.0.5 allows attackers to execute any local .php file via a relative path in the view parameeter...
CVE-2015-5467
web\ViewAction in Yii aka Yii2 2.x before 2.0.5 allows attackers to execute any local .php file via a relative path in the view parameeter...
CVE-2015-5467
CVE-2015-5467 affects Yii2 (web/ViewAction) in 2.x prior to 2.0.5. The vulnerability allows an attacker to execute arbitrary local PHP files by supplying a relative path in the view parameter, enabling local file inclusion through the view rendering path. The root cause is improper handling of vi...