Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

icopydoc — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting icopydoc. AI-powered Chinese analysis, POCs, and references for each vulnerability.

iCopyDoc primarily serves as a document copying and management tool, enabling users to duplicate and organize content across platforms. Historically, the application has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its nine recorded CVEs. Security researchers have identified input validation weaknesses and improper access controls as recurring problems. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for users handling sensitive documents. The application's security posture has been characterized by delayed patch responses and insufficient input sanitization, leaving users exposed to potential exploitation.

Top products by icopydoc: YML for Yandex Market Maps for WP XML for Google Merchant Center XML for Avito Import from YML
CVE IDTitleCVSSSeverityPublished
CVE-2026-32567 WordPress YML for Yandex Market plugin < 5.3.0 - Arbitrary File Deletion vulnerability — YML for Yandex MarketCWE-22 6.8 Medium2026-03-25
CVE-2025-64232 WordPress Import from YML plugin <= 3.1.17 - Cross Site Scripting (XSS) vulnerability — Import from YMLCWE-79 7.1 High2025-11-06
CVE-2025-57952 WordPress Maps for WP Plugin <= 1.2.5 - Cross Site Scripting (XSS) Vulnerability — Maps for WPCWE-79 5.9 Medium2025-09-22
CVE-2025-32179 WordPress Maps for WP Plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability — Maps for WPCWE-79 6.5 Medium2025-04-04
CVE-2024-13648 Maps for WP <= 1.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting — Maps for WPCWE-79 6.4 Medium2025-02-21
CVE-2025-24646 WordPress XML for Avito Plugin <= 2.5.2 - Reflected Cross Site Scripting (XSS) vulnerability — XML for AvitoCWE-79 7.1 High2025-02-03
CVE-2024-13406 XML for Google Merchant Center <= 3.0.11 - Reflected Cross-Site Scripting — XML for Google Merchant CenterCWE-79 6.1 Medium2025-01-22
CVE-2024-9378 YML for Yandex Market <= 4.7.2 - Reflected Cross-Site Scripting — YML for Yandex MarketCWE-79 6.1 Medium2024-10-02
CVE-2024-1365 YML for Yandex Market <= 4.2.3 - Reflected Cross-Site Scripting — YML for Yandex MarketCWE-79 6.1 Medium2024-03-13

This page lists every published CVE security advisory associated with icopydoc. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.