Description WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter. Remediation References CVE-2014-5114 Related Vulnerabilities CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-42428) WordPress Plugin Content Aware Sidebars-Unlimited Widget Areas Security Bypass (3.8) Atlassian Confluence Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2024-21672) Moodle Other Vulnerability (CVE-2006-4938) Grafana Other Vulnerability (CVE-2021-28147) Severity High Classification CVE-2014-5114 Tags Missing Update Known Vulnerabilities