VulnerableCode Package Details - pkg:composer/icecoder/icecoder@8.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:composer/icecoder/icecoder@8.0

Essentials
History (5)

purl	pkg:composer/icecoder/icecoder@8.0

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-1j2k-me4a-uubk Aliases: CVE-2021-32106 GHSA-jf9v-q8vh-3fmc	Cross-site Scripting In ICEcoder allows, a reflected XSS vulnerability was identified in the multipe-results.php page due to insufficient sanitization of the _GET['replace'] variable. As a result, arbitrary Javascript code can get executed.	8.1.0 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-76uc-xd9r-f3gz Aliases: CVE-2024-41373 GHSA-x38c-v778-w56m	ICEcoder Path Traversal vulnerability ICEcoder 8.1 contains a Path Traversal vulnerability via lib/backup-versions-preview-loader.php.	There are no reported fixed by versions.
VCID-7dkz-eu2g-gyhe Aliases: CVE-2024-41374 GHSA-xcr9-pm5w-gvh2	ICEcoder vulnerable to Cross Site Scripting ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/settings-screen.php	There are no reported fixed by versions.
VCID-dk9u-m4au-3kgq Aliases: CVE-2024-41375 GHSA-5j47-3m62-7vr3	ICEcoder vulnerable to Cross Site Scripting ICEcoder 8.1 is vulnerable to Cross Site Scripting (XSS) via lib/terminal-xhr.php	There are no reported fixed by versions.
VCID-z19c-88s1-s7bt Aliases: CVE-2021-3862 GHSA-73q9-7pwj-gm46	icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	8.1.0 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 8.1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-06T05:15:16.204180+00:00	GitLab Importer	Affected by	VCID-dk9u-m4au-3kgq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/icecoder/icecoder/CVE-2024-41375.yml	38.6.0
2026-06-06T05:15:15.426152+00:00	GitLab Importer	Affected by	VCID-76uc-xd9r-f3gz	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/icecoder/icecoder/CVE-2024-41373.yml	38.6.0
2026-06-06T05:15:14.781968+00:00	GitLab Importer	Affected by	VCID-7dkz-eu2g-gyhe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/icecoder/icecoder/CVE-2024-41374.yml	38.6.0
2026-06-06T01:18:07.643916+00:00	GitLab Importer	Affected by	VCID-z19c-88s1-s7bt	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/icecoder/icecoder/CVE-2021-3862.yml	38.6.0
2026-06-06T00:44:15.416819+00:00	GitLab Importer	Affected by	VCID-1j2k-me4a-uubk	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/icecoder/icecoder/CVE-2021-32106.yml	38.6.0