4 matches found
CVE-2018-12290
The Yii2-StateMachine extension v2.x.x for Yii2 has XSS...
CVE-2018-12290
The Yii2-StateMachine extension v2.x.x for Yii2 has XSS...
CVE-2018-12290
The Yii2-StateMachine extension v2.x.x for Yii2 has XSS...
CVE-2018-12290
The CVE-2018-12290 entry concerns the Yii2-StateMachine extension for Yii2 (v2.x.x). Technical details in connected mappings confirm a cross-site scripting (XSS) vulnerability within this extension. The root cause is improper input handling leading to script injection in the Yii2-StateMachine cod...