CVE-2014-8752
CVE-2014-8752 affects JCE-Tech “Video Niche Script” v4.0. The vulnerable component is view.php, with XSS via the (1) video or (2) title parameter, allowing remote attackers to inject arbitrary script/HTML. Root cause is cross-site scripting in the web application. Documented impact is general inp...