提交 #521718: Yii Software LLC Yii 2.0 <=2.0.39 Deserialization信息

标题Yii Software LLC Yii 2.0 <=2.0.39 Deserialization
描述Yii version <=2.0.39 has a deserialization vulnerability. If the framework is referenced and there is a deserialization entry point, an attacker can achieve arbitrary command execution through deserialization.
来源⚠️ https://github.com/gaorenyusi/gaorenyusi/blob/main/Yii2-2.md
用户
 gaorenyusi (UID 74236)
提交2025-03-17 14時37分 (1 年前)
管理2025-03-23 10時36分 (6 days later)
状态已接受
VulDB条目300711 [yiisoft Yii2 直到 2.0.39 MockClass.php generate 权限提升]
积分17

上一步一览下一步

Do you need the next level of professionalism?

Upgrade your account now!