CVE-2021-32106

In ICEcoder 8.0 allows, a reflected XSS vulnerability was identified in the multipe-results.php page due to insufficient sanitization of the _GET[‘replace’] variable. As a result, arbitrary Javascript code can get executed.

Date published : 2021-06-08

https://github.com/icecoder/ICEcoder

https://groups.google.com/g/icecoder/c/xcAc8_1UPxQ