Vulnerabilities

CVE-2024-58136

by Fred · 10/04/2025

Yii 2 before 2.0.52 mishandles the attaching of behavior that is defined by an __class array key, a CVE-2024-4990 regression, as exploited in the wild in February through April 2025.

More information : https://github.com/yiisoft/yii2/commit/40fe496eda529fd1d933b56a1022ec32d3cd0b12

Similar

Tags: Cybersecurity Alert