Описание
Yii 2 v2.0.45 was discovered to contain a cross-site scripting (XSS) vulnerability via the endpoint /books. NOTE: this is disputed by the vendor because the cve-2022-31454-8e8555c31fd3 page does not describe why /books has a relationship to Yii 2.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:yiiframework:yii:2.0.45:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
debian
больше 2 лет назад
Yii 2 v2.0.45 was discovered to contain a cross-site scripting (XSS) v ...
CVSS3: 6.1
github
больше 2 лет назад
Yii 2 v2.0.45 was discovered to contain a cross-site scripting (XSS) vulnerability via the endpoint /books.
EPSS
Процентиль: 23%
0.00076
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79