SQL injection vulnerability found in Yii Framework Yii 2 Framework before v.2.0.47 allows the a remote malicious user to execute arbitrary code via the runAction function. NOTE: the software maintainer's position is that the vulnerability is in third-party code, not in the framework.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yiiframework yii |