8.7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
71.7%
Yii 2.x before 2.0.15 allows remote attackers to inject unintended search conditions via a variant of the CVE-2018-7269 attack in conjunction with the Elasticsearch extension.
www.yiiframework.com/news/168/releasing-yii-2-0-15-and-database-extensions-with-security-fixes/