Ungitshello

**Name of the Vulnerable Software and Affected Versions** IceCMS version 2.0.1 **Description** An issue was discovered in IceCMS, allowing attackers to escalate privileges and gain sensitive information via the `UserID` parameter in the "api/User/ChangeUser" endpoint. **Recommendations** For IceCMS version 2.0.1, consider disabling the `UserID` parameter in the "api/User/ChangeUser" endpoint until a patch is available. Restrict access to the "api/User/ChangeUser" endpoint to minimize the risk of exploitation.