yiisoft/yii2 Security Advisories for 2.0.34 (1)
-
[HIGH] Possible remote code execution via unserialize() on user input containing specially crafted string
PKSA-qmd6-d7pz-yk89 CVE-2020-15148 GHSA-699q-wcff-g9mj
Affected version: <2.0.38
Reported by:
GitHub, FriendsOfPHP/security-advisories