yiisoft/yii2 is using insecure random number generation. The vulnerability exists because it uses the function mt_rand() in BaseMailer.php which is a predictable Random Number algorithm for random bytes and int generation.
CPE | Name | Operator | Version |
---|---|---|---|
yiisoft/yii2 | le | 2.0.42.1 | |
yiisoft/yii2 | le | 2.0.42.1 |