pkg:composer/yiisoft/yii2-elasticsearch
Type
composer
Namespace
yiisoft
Name
yii2-elasticsearch
Known advisories, vulnerabilities and fixes for yii2-elasticsearch package.
High
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 2.0.5 |
CVE-2018-8074
|
 PHP:YIISOFT-YII2-ELASTICSEARCH-2018-8074
|
Possibility of manipulated condition when unfiltered input is passed to `yii\elasticsearch\ActiveRecord::findOne()` and `::findAll()` | high |
2018-03-20T14:00:00
(6 years ago) |