CVE-2014-8490
CVE-2014-8490 is a Cross-Site Scripting (XSS) vulnerability in TennisConnect COMPONENTS 9.927. The issue allows an attacker to inject arbitrary web script or HTML through the pid parameter to index.cfm, as documented in the NVD entry. Public write-ups (PacketStorm) provide an example exploit titl...