Yiiframework Gii
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Yiiframework Gii.
By the Year
In 2026 there have been 0 vulnerabilities in Yiiframework Gii. Gii did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 8.80 |
| 2022 | 1 | 5.40 |
It may take a day or so for new Gii vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Yiiframework Gii Security Vulnerabilities
Yii2 Gii <2.2.2 RCE via Generator.php
CVE-2020-36655
8.8 - High
- January 21, 2023
Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file.
Code Injection
Stored XSS in Yii2 Gii before 2.2.4
CVE-2022-34297
5.4 - Medium
- December 09, 2022
Yii Yii2 Gii through 2.2.4 allows stored XSS by injecting a payload into any field.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Yiiframework Gii or by Yiiframework? Click the Watch button to subscribe.
