Yii2 Statemachine
1 CVEs
product
Monthly
The Yii2-StateMachine extension v2.x.x for Yii2 has XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Yii2 Statemachine
NVD
CVSS 3.0
6.1
EPSS
0.7%
CVE-2018-12290
PHP
EPSS 1%
CVSS 6.1
MEDIUM
POC
This Month
The Yii2-StateMachine extension v2.x.x for Yii2 has XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
Yii2 Statemachine
NVD