CVE-2014-1454
Pearson eSIS Enterprise Student Information System is affected by CVE-2014-1454, a stored XSS in the message board caused by improper validation of user input. The vulnerability allows injection of HTML/script into the browser context of other users, potentially enabling session hijacking or phis...