Yii · Yiisoft/Yii · CVE-2025-32027
Name of the Vulnerable Software and Affected Versions:
yiisoft/yii versions prior to 1.1.31
Description:
The issue concerns a Reflected XSS vulnerability in specific scenarios where the fallback error renderer is used.
Recommendations:
For versions prior to 1.1.31, upgrade yiisoft/yii to version 1.1.31 or higher.