Description

WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter.

Remediation

References

CVE-2014-5114

Related Vulnerabilities

WordPress Plugin Tickera-WordPress Event Ticketing Security Bypass (3.4.9.1)

WordPress Plugin Gutenberg & Elementor Templates Importer For Responsive Security Bypass (2.2.5)

WordPress Plugin Advanced Contact form 7 DB SQL Injection (1.6.0)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-2986)

WordPress Plugin Zedity:The Easiest Way To Create Posts & Pages Unspecified Vulnerability (5.0.2)

Severity

High

Classification

CVE-2014-5114

Tags

Missing Update Known Vulnerabilities