Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:32 p.m.9 views

CVE-2022-41922

yiisoft/yii before version 1.1.27 are vulnerable to Remote Code Execution RCE if the application calls unserialize on arbitrary user input. This has been patched in 1.1.27...

9.8CVSS7.5AI score0.01133EPSS
Exploits0References1
NVD
NVD
added 2022/11/23 6:15 p.m.27 views

CVE-2022-41922

yiisoft/yii before version 1.1.27 are vulnerable to Remote Code Execution RCE if the application calls unserialize on arbitrary user input. This has been patched in 1.1.27...

9.8CVSS0.01133EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/23 12:0 a.m.34 views

CVE-2022-41922 yiisoft/yii before v1.1.27 vulnerable to Remote Code Execution if the application calls `unserialize()` on arbitrary user input

yiisoft/yii before version 1.1.27 are vulnerable to Remote Code Execution RCE if the application calls unserialize on arbitrary user input. This has been patched in 1.1.27...

8.1CVSS10AI score0.01133EPSS
Exploits0References2
CVE
CVE
added 2022/11/23 12:0 a.m.117 views

CVE-2022-41922

The CVE-2022-41922 entry affects the PHP framework yiisoft/yii. Prior to version 1.1.27, applications that call unserialize() on arbitrary user input are vulnerable to Remote Code Execution. The issue has been patched in 1.1.27. The vulnerability carries a high/critical impact potential per multi...

9.8CVSS9.2AI score0.01133EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/23 12:0 a.m.5 views

CVE-2022-41922 yiisoft/yii before v1.1.27 vulnerable to Remote Code Execution if the application calls `unserialize()` on arbitrary user input

yiisoft/yii before version 1.1.27 are vulnerable to Remote Code Execution RCE if the application calls unserialize on arbitrary user input. This has been patched in 1.1.27...

8.1CVSS9.7AI score0.01133EPSS
Exploits0References2
OSV
OSV
added 2022/11/23 12:0 a.m.29 views

CVE-2022-41922 yiisoft/yii before v1.1.27 vulnerable to Remote Code Execution if the application calls `unserialize()` on arbitrary user input

yiisoft/yii before version 1.1.27 are vulnerable to Remote Code Execution RCE if the application calls unserialize on arbitrary user input. This has been patched in 1.1.27...

8.1CVSS9.4AI score0.01133EPSS
Exploits0References4
Rows per page
Query Builder