Description WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter. Remediation References CVE-2014-5114 Related Vulnerabilities Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-35740) WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2) WordPress Plugin Easy WP SMTP PHP Object Injection (1.3.9) WordPress Plugin Easy Google Fonts Cross-Site Scripting (1.3.6) WordPress Plugin Lazyest Gallery EXIF Code Cross-Site Scripting (1.1.20) Severity High Classification CVE-2014-5114 Tags Missing Update Known Vulnerabilities