2 matches found
CVE-2025-32027
Yii is an open source PHP web framework. Prior to 1.1.31, yiisoft/yii is vulnerable to Reflected XSS in specific scenarios where the fallback error renderer is used. Upgrade yiisoft/yii to version 1.1.31 or higher...
CVE-2025-32027
CVE-2025-32027 affects the Yii PHP framework (yiisoft/yii) prior to 1.1.31. The issue is a Reflected XSS vulnerability that occurs in certain scenarios when the fallback error renderer is used. Impact is limited to scenarios described in the advisory; no exploitation details are provided in the s...