VulnerableCode Package Details - pkg:composer/yiisoft/yii2-dev@2.0.43

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/yiisoft/yii2-dev@2.0.43

Essentials
History (2)

purl	pkg:composer/yiisoft/yii2-dev@2.0.43

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-6rub-m94d-jfct	Use of Insufficiently Random Values yii2 is vulnerable to use of predictable algorithm in a random number generator	CVE-2021-3689
VCID-gb9u-t143-vker	Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator	CVE-2021-3692

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:39:36.091148+00:00	GitLab Importer	Fixing	VCID-6rub-m94d-jfct	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/yiisoft/yii2-dev/CVE-2021-3689.yml	38.6.0
2026-06-02T04:39:36.020149+00:00	GitLab Importer	Fixing	VCID-gb9u-t143-vker	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/yiisoft/yii2-dev/CVE-2021-3692.yml	38.6.0