CVE-2014-4513
ActiveHelper LiveHelp Server 3.1.0 (WordPress plugin) contains multiple XSS flaws in server/offline.php, exploitable via the MESSAGE, EMAIL, or NAME parameters. Root cause: reflected/stored input not properly sanitized, allowing arbitrary script/HTML injection. Impact: potential theft or manipula...