Yii 2 v2.0.45 was discovered to contain a cross-site scripting (XSS) vulnerability via the endpoint /books. NOTE: this is disputed by the vendor because the cve-2022-31454-8e8555c31fd3 page does not describe why /books has a relationship to Yii 2.
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.0.45" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31454.json"