yiisoft Yii2 Vulnerabilities
Yiisoft Yii2 vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Deserialization Issue in Yii Framework by Yii Software LLC
CVE-2025-2690YiisoftYii2πΎπ‘5.3MEDIUMDeserialization Vulnerability in Yii2 by Yii Software LLC
CVE-2025-2689YiisoftYii2πΎπ‘5.3MEDIUMCross-site Scripting (XSS) Vulnerability in Yii 2 Affects Latest Version 2.0.49.3
CVE-2024-32877YiisoftYii24.2MEDIUMyii2-authclient vulnerable to possible timing attack on string comparison in OAuth1, OAuth2 and OpenID Connect implementation
CVE-2023-50708yiisoftyii2-authclient6.1MEDIUMThe Oauth2 PKCE implementation is vulnerable
CVE-2023-50714YiisoftYii2-authclient6.8MEDIUMUnsafe deserialization in Yii 2
CVE-2020-15148YiisoftYii2πΎπ‘EPSS 91%8.9HIGH
24 March 2025
30 May 2024
22 December 2023
15 September 2020
No more vulnerabilities to load.