codeigniter CVE Vulnerabilities & CVE List (43)

Products (CPE): — CVEs: 43

codeigniter vulnerability overview

Aggregates CVE and security vulnerability intelligence across all codeigniter-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk cross-site scripting, vendor risk csrf, and vendor risk input validation; exposure may include vendor impact session compromise in vendor surface software deployment contexts.

Vulnerability distribution trend (last 24 months)

Showing 4143 of 43 CVEs
«« First « Prev Page 3 / 3 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2007-3708 Cross-site scripting (XSS) vulnerability in CodeIgniter 1.5.3 before 20070626 allows remote attackers to inject arbitrary web script or HTML via (1) String.fromCharCode and (2) malformed nested tag manipulations in an unspecified component, related to insufficient sanitization by the xss_clean function. [email protected] 4.3 1.22% 2007-07-11 2026-06-16
CVE-2007-3707 Directory traversal vulnerability in index.php in CodeIgniter 1.5.3 before 20070628, when enable_query_strings is true, allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter. [email protected] 5.0 1.71% 2007-07-11 2026-06-16
CVE-2007-3706 The _sanitize_globals function in CodeIgniter 1.5.3 before 20070628 allows remote attackers to unset arbitrary global variables with unspecified impact, as demonstrated by a _SERVER cookie. [email protected] 2.1 0.64% 2007-07-11 2026-06-16
«« First « Prev Page 3 / 3 Next »
cvelogic Threat Intelligence