CVE-2014-4672
The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0057 (0.6%)
Percentil: 68.7%
EPSS: 2026-05-06
Afecta
yiiframework:yiiframeworkDescripción técnica
The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property.
Publicada: 3/7/2014, 17:55:06
Última modificación: 6/5/2026, 22:30:45