ErickSkrauch

1 exploit Active since Apr 2025
CVE-2024-58136 WRITEUP CRITICAL WRITEUP
Yii 2 < 2.0.52 Behavior Attachment - __class Code Execution
Yii 2 before 2.0.52 mishandles the attaching of behavior that is defined by an __class array key, a CVE-2024-4990 regression, as exploited in the wild in February through April 2025.
CVSS 9.0