Yii
by Yiiframework
Standard maintenance is sufficient
Yii has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
15.8%
Confirmed actively exploited (CISA)
5.3%
Public exploit code available
0.0%
Based on 19 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-15148 | 8.9 | 93.4% | — |
| CVE-2024-58136 | 9.0 | 57.5% | Yes |
| CVE-2023-26750 | 9.8 | 13.6% | — |
| CVE-2024-32877 | 4.2 | 4.0% | — |
| CVE-2022-41922 | 8.1 | 3.8% | — |
| CVE-2023-47130 | 8.1 | 3.3% | — |
| CVE-2018-8073 | 9.8 | 0.9% | — |
| CVE-2018-8074 | 8.1 | 0.9% | — |
| CVE-2018-7269 | 9.8 | 0.6% | — |
| CVE-2021-3689 | 7.5 | 0.4% | — |
| CVE-2021-3692 | 5.3 | 0.4% | — |
| CVE-2025-2689 | 6.3 | 0.3% | — |
| CVE-2024-4990 | 9.1 | 0.2% | — |
| CVE-2017-11516 | 6.1 | 0.2% | — |
| CVE-2025-32027 | 6.1 | 0.2% | — |
| CVE-2025-2690 | 6.3 | 0.2% | — |
| CVE-2015-5467 | 9.8 | 0.1% | — |
| CVE-2018-20745 | 5.9 | 0.1% | — |
| CVE-2022-31454 | 6.1 | 0.1% | — |
12
/ 100
low-risk
Active Threat
11/50 · Low
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.