Source |
CVE Liste |
Identifiant |
8303050 |
Date de publication |
2023-01-21 01:15:12 (vue: 2023-01-21 07:08:27) |
Titre |
CVE-2020-36655 |
Texte |
Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file. |
Envoyé |
Oui |
Condensat |
2020 36655 allows arbitrary attacker attackers before can code cve embed execute field file generator gii messagecategory model php remote yii yii2 |
Tags |
|
Stories |
|
Notes |
|
Move |
|