Security Advisories - yiisoft/yii2 - Packagist

yiisoft/yii2 Security Advisories for 2.0.25 (2)

[HIGH] Unsafe Reflection in base Component class

PKSA-53mg-bvkk-zmbs CVE-2024-4990 GHSA-cjcc-p67m-7qxm

Affected version: <2.0.49.4

Reported by:
GitHub, FriendsOfPHP/security-advisories
[HIGH] Possible remote code execution via unserialize() on user input containing specially crafted string

PKSA-qmd6-d7pz-yk89 CVE-2020-15148 GHSA-699q-wcff-g9mj

Affected version: <2.0.38

Reported by:
GitHub, FriendsOfPHP/security-advisories