Description WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter. Remediation References CVE-2014-5114 Related Vulnerabilities CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-35239) Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7852) LimeSurvey Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-9960) WordPress Plugin Mashshare-Social Media Icons SEO Share Buttons for Facebook, Twitter, Subscribe Information Disclosure (2.3.0) MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1817) Severity High Classification CVE-2014-5114 Tags Missing Update Known Vulnerabilities