Icecoder: Security Vulnerabilities
ICEcoder 8.1 contains a Path Traversal vulnerability via lib/backup-versions-preview-loader.php.
CVSS Score
6.3
EPSS Score
0.002
Published
2024-07-26
ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/settings-screen.php
CVSS Score
6.1
EPSS Score
0.001
Published
2024-07-26
ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/terminal-xhr.php
CVSS Score
6.1
EPSS Score
0.001
Published
2024-07-26
ICEcoder v8.1 allows attackers to execute a directory traversal.
CVSS Score
7.5
EPSS Score
0.005
Published
2022-09-22
icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS Score
5.4
EPSS Score
0.003
Published
2022-01-17
In ICEcoder 8.0 allows, a reflected XSS vulnerability was identified in the multipe-results.php page due to insufficient sanitization of the _GET['replace'] variable. As a result, arbitrary Javascript code can get executed.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-06-08