yii2-gii.yml

send:
    - method: 'GET'
      url: '/index.php?r=gii'
    
    - method: 'GET'
      url: '/gii'

    - method: 'GET'
      url: '/index.php?r=gii/default/index'

detect:
    - response:
      - body: '<title>Welcome to Gii<\/title>'

meta-info:
    - title: "Gii Extension for Yii 2"
    - description: "This extension provides a Web-based code generator for Yii framework 2.0 applications. It should be accessible only from the whitelist of allowed IP addresses"
    - additional: "Also in this module may contain possible remote code execution via an unescaped parameter in 'generateString' function. For more information see https://github.com/yiisoft/yii2-gii/issues/433"
    - type: info
    - threat: 75
    - applicable_for:
      - fast
      - scanner
    - tags: 
      - Yii2
      - Yii2 Gii