Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Icecoder Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-41375 1 Icecoder 1 Icecoder 2025-04-22 N/A 6.1 MEDIUM
ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/terminal-xhr.php
CVE-2024-41374 1 Icecoder 1 Icecoder 2025-04-22 N/A 6.1 MEDIUM
ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/settings-screen.php
CVE-2024-41373 1 Icecoder 1 Icecoder 2025-04-22 N/A 6.3 MEDIUM
ICEcoder 8.1 contains a Path Traversal vulnerability via lib/backup-versions-preview-loader.php.
CVE-2022-34026 1 Icecoder 1 Icecoder 2024-11-21 N/A 7.5 HIGH
ICEcoder v8.1 allows attackers to execute a directory traversal.
CVE-2021-3862 1 Icecoder 1 Icecoder 2024-11-21 3.5 LOW 4.8 MEDIUM
icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-32106 1 Icecoder 1 Icecoder 2024-11-21 3.5 LOW 5.4 MEDIUM
In ICEcoder 8.0 allows, a reflected XSS vulnerability was identified in the multipe-results.php page due to insufficient sanitization of the _GET['replace'] variable. As a result, arbitrary Javascript code can get executed.