yii\web\ViewAction
. It is highly recommended to upgrade . The update is fully compatible with 2.0.4, contains only a security fix and does not break your code.
ViewAction
is the ability to run any PHP file (or file with the .php
extension) on the disk by passing a relative path through the view
parameter. Since the problem was reported through a public tracker, we fixed it and released the update immediately.
Source: https://habr.com/ru/post/262315/