CVE-2018-6010
CVE-2018-6010 affects Yii Framework 2.x up to and including 2.0.13 (fix in 2.0.14). The issue arises from the error handling path: remote attackers could obtain potentially sensitive information from exception messages and could exploit reflected XSS on the error handler page when running in non-...