2 matches found
CVE-2014-8490
Cross-site scripting XSS vulnerability in TennisConnect COMPONENTS 9.927 allows remote attackers to inject arbitrary web script or HTML via the pid parameter to index.cfm...
CVE-2014-8490
CVE-2014-8490 is a Cross-Site Scripting (XSS) vulnerability in TennisConnect COMPONENTS 9.927. The issue allows an attacker to inject arbitrary web script or HTML through the pid parameter to index.cfm, as documented in the NVD entry. Public write-ups (PacketStorm) provide an example exploit titl...