CVE-2022-34026

ICEcoder v8.1 allows attackers to execute a directory traversal...

Directory traversal

ICEcoder v8.1 allows attackers to execute a directory traversal...

CVE-2022-34026

ICEcoder v8.1 allows attackers to execute a directory traversal...

CVE-2022-34026

The CVE-2022-34026 entry concerns ICEcoder v8.1, with a directory traversal vulnerability that could affect confidentiality. Multiple connected sources corroborate a path traversal flaw in ICEcoder 8.1, including advisories (GHSA/Red Hat/OSV) and PT-2022-21977 noting no available fix for version ...

CVE-2022-34026

ICEcoder v8.1 allows attackers to execute a directory traversal...

PT-2022-21977 · Icecoder · Icecoder

Name of the Vulnerable Software and Affected Versions: ICEcoder version 8.1 Description: The issue allows attackers to execute a directory traversal. Recommendations: For ICEcoder version 8.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability...

ICEcoder 路径遍历漏洞

ICEcoder is a browser-based code editor that provides a modern approach to building websites. By allowing you to write code directly in your web browser. A security vulnerability exists in ICEcoder version v8.1 that stems from an attacker being able to perform directory traversal...

Directory Traversal

ICEcoder is vulnerable to directory traversal. The vulnerability exists in multiple functions in classes/Settings.php and lib/settings.php where an attacker will gain unauthorized access to restricted directories and files outside of the web root folder using a HTTP exploit...

WordPress ICEcoder integration plugin <= 2.0.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress ICEcoder integration plugin versions = 2.0.2. Solution No patched version available...

WordPress ICEcoder integration plugin <= 2.0.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress ICEcoder integration plugin versions = 2.0.2. Solution No patched version available...

icecoder is vulnerable to Cross-site Scripting

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

GHSA-73Q9-7PWJ-GM46 icecoder is vulnerable to Cross-site Scripting

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

Cross-site Scripting (XSS)

icecoder/icecoder is vulnerable to cross-site scripting. The vulnerability exists in editor.php because the conditions are not properly handled which allows an attacker to craft and send malicious scripts to an unsuspecting user...

CVE-2021-3862

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

CVE-2021-3862

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

Cross site scripting

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

CVE-2021-3862 Cross-site Scripting (XSS) - Reflected in icecoder/icecoder

icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

CVE-2021-3862

CVE-2021-3862 affects icecoder and is described as an Improper Neutralization of Input During Web Page Generation (XSS). Public sources in the connected set cite an XSS flaw in icecoder/icecoder, with multiple references (NVD entry and related advisories) confirming a Cross-site Scripting vulnera...

ICEcoder 跨站脚本漏洞

ICEcoder is a browser-based code editor that provides a modern approach to building websites. By allowing you to write code directly in your web browser. A cross-site scripting vulnerability exists in icecoder, which can be exploited by attackers to perform XSS attacks...

Cross-site Scripting (XSS) - Reflected in icecoder/icecoder

Description Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into websites. An attacker can use XSS to send a malicious script to an unsuspecting user. The end user’s browser has no way to know that the script should not be trusted, and will execut...