Invia #521709: Yii Software LLC Yii 2.0 <=2.0.45 RCEinformazioni

TitoloYii Software LLC Yii 2.0 <=2.0.45 RCE
DescrizioneYii version <=2.0.45 has a deserialization vulnerability. If the framework is referenced and there is a deserialization entry point, an attacker can achieve arbitrary command execution through deserialization.
Fonte⚠️ https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2.md
Utente
 gaorenyusi (UID 74236)
Sottomissione17/03/2025 14:28 (1 Anno fa)
Moderazione23/03/2025 10:36 (6 days later)
StatoAccettato
Voce VulDB300710 [yiisoft Yii2 fino a 2.0.45 SortableIterator.php getIterator escalationi di privilegi]
Punti17

PrecedenteVisione D'ensembleIl prossimo

Interested in the pricing of exploits?

See the underground prices here!