Description WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter. Remediation References CVE-2014-5114 Related Vulnerabilities Liferay DXP Cleartext Storage of Sensitive Information Vulnerability (CVE-2021-33323) WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-14723) WordPress Plugin Easy Accept Payments for PayPal Cross-Site Scripting (4.9.9) WordPress 3.8.x Cross-Site Request Forgery (3.8 - 3.8.28) Oracle JRE CVE-2020-2781 Vulnerability (CVE-2020-2781) Severity High Classification CVE-2014-5114 Tags Missing Update Known Vulnerabilities