CVE-2017-11516

Published July 21st, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

An XSS vulnerability exists in framework/views/errorHandler/exception.php in Yii Framework 2.0.12 affecting the exception screen when debug mode is enabled, because $exception->errorInfo is mishandled.

yiisoft/yii2

Yii 2: The Fast, Secure and Professional PHP Framework

GitHub

14.3K