This is a detailed vulnerability writeup for IceHrm <= 7.1, describing multiple vulnerabilities including Local File Inclusion (LFI), Cross-Site Scripting (XSS), Malicious File Upload, and Cross-Site Request Forgery (CSRF). It includes Proof of Concept (PoC) examples for each vulnerability.