yiisoft/yii2-gii

Releases25

Frequency5 months 2 weeks

Last Release over 1 year ago

Stars201

Yii 2 Gii Extension

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-36655 ↗	Jan 21, 2023Saturday, 21 January 2023, 01:15	8.8 HIGH	—
Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file.