إرسال #521718: Yii Software LLC Yii 2.0 <=2.0.39 Deserializationالمعلومات

عنوانYii Software LLC Yii 2.0 <=2.0.39 Deserialization
الوصفYii version <=2.0.39 has a deserialization vulnerability. If the framework is referenced and there is a deserialization entry point, an attacker can achieve arbitrary command execution through deserialization.
المصدر⚠️ https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2-2.md
المستخدم
 gaorenyusi (UID 74236)
ارسال17/03/2025 02:37 PM (1 سنة منذ)
الاعتدال23/03/2025 10:36 AM (6 days later)
الحالةتمت الموافقة
إدخال VulDB300711 [yiisoft Yii2 حتى 2.0.39 MockClass.php generate تجاوز الصلاحيات]
النقاط17

التالي نظرة عامة السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!