pkg:Packagist/yiisoft/yii

4 total CVEsHIGH2MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • HIGH8.1CVE-2023-47130yiisoft/yii deserializing untrusted user input can lead to remote code execution
    from 0, < 1.1.29
  • HIGH8.1CVE-2022-41922Prevent RCE when deserializing untrusted user input
    from 0, < 1.1.27
  • MEDIUM6.1CVE-2025-32027Yii does not prevent XSS in scenarios where fallback error renderer is used
    from 0, < 1.1.31
  • CVE-2014-4672Yii PHP Framework arbitrary PHP scripts execution
    >= 1.1.14, < 1.1.15