JSON Data encoded for use in HTML was not safe to use in IE6/IE7, possible XSS attacks

PKSA-dp5z-g943-nbyy CVE-2015-3397

Affected package: yiisoft/yii2-dev

Affected version: <2.0.4

Reported by:
FriendsOfPHP/security-advisories