yiisoft/yii2 — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in yiisoft/yii2, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-4990	Unsafe Reflection in base Component class in yiisoft/yii2 CWE-470	9.8	-	2025-03-20
CVE-2021-3692	Use of Predictable Algorithm in Random Number Generator in yiisoft/yii2 CWE-1241	-	-	2021-08-10
CVE-2021-3689	Use of Predictable Algorithm in Random Number Generator in yiisoft/yii2 CWE-1241	-	-	2021-08-10

All 3 known CVE vulnerabilities affecting yiisoft/yii2 with full Chinese analysis, references, and POCs where available.