{"id":"CVE-2018-12420","details":"IceHrm before 23.0.1.OS has a risky usage of a hashed password in a request.","modified":"2026-04-11T15:22:10.896552Z","published":"2018-06-14T21:29:00.207Z","references":[{"type":"ADVISORY","url":"https://github.com/gamonoid/icehrm/releases/tag/v23.0.1.OS"},{"type":"FIX","url":"https://github.com/gamonoid/icehrm/commit/025a8283ab5d679ff99a6b82398e4c8efed1ad9d"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gamonoid/icehrm","events":[{"introduced":"0"},{"fixed":"f23856d70a07d9a7251eccb08cce0de8c20f3fa5"},{"fixed":"025a8283ab5d679ff99a6b82398e4c8efed1ad9d"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"23.0.1.os"}],"source":["CPE_FIELD","REFERENCES"],"cpe":"cpe:2.3:a:icehrm:icehrm:*:*:*:*:*:*:*:*"}}],"versions":["13.1.OS","v13.1.OS","v14.0.OS","v14.1.OS","v15.0.OS","v15.2.OS","v16.0.OS","v16.1.OS","v18.0.OS","v19.0.OS","v20.0.OS","v20.2.OS","v20.3.0.OS","v21.0.0.OS","v21.1.0.OS","v23.0.0.OS"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-12420.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}