CVE-2014-3149
CVE-2014-3149 is a reflected XSS in Invision Power IP.Board (IP.Board) versions 3.3.x and 3.4.x up to 3.4.6 (and IP.Nexus 1.5.x up to 1.5.9). The vulnerability allows injection of arbitrary web script via unspecified vectors and is categorized as low severity with limited exploitability; vendor p...