Vulnerabilities > Codiad > Codiad > 1.0.0

DATE CVE VULNERABILITY TITLE RISK
2020-03-16 CVE-2019-19208 Code Injection vulnerability in Codiad
Codiad Web IDE through 2.8.4 allows PHP Code injection.
network
low complexity
codiad CWE-94
critical
 9.8
9.8
2018-07-12 CVE-2018-14009 Improper Input Validation vulnerability in Codiad
Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.
network
low complexity
codiad CWE-20
critical
 9.8
9.8
2017-08-21 CVE-2017-11366 OS Command Injection vulnerability in Codiad
components/filemanager/class.filemanager.php in Codiad before 2.8.4 is vulnerable to remote command execution because shell commands can be embedded in parameter values, as demonstrated by search_file_type.
network
low complexity
codiad CWE-78
critical
 9.8
9.8