RSS   Vulnerabilities for 'Icecoder'   RSS

2022-01-17
 
CVE-2021-3862

CWE-79
 

 
icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

 
2021-06-08
 
CVE-2021-32106

CWE-79
 

 
In ICEcoder 8.0 allows, a reflected XSS vulnerability was identified in the multipe-results.php page due to insufficient sanitization of the _GET['replace'] variable. As a result, arbitrary Javascript code can get executed.

 


Copyright 2024, cxsecurity.com

 

Back to Top