===== Cross-Site Scripting (XSS) ===== * SSCHADV2014-001 - Wordpress Plugin WP-Members Version 2.8.9 - Stored and reflected Cross-site Scripting vulnerabilities * SSCHADV2014-003 - Serendipity 1.7.5 (Backend) - Multiple security vulnerabilities (XSS $ SQLi) * SSCHADV2014-004 - reg.ebay.com - Cross-site Scripting vulnerability * SSCHADV2014-005 - ocsnext.ebay.com - Open Redirect * SSCHADV2014-006 - Serendipity plugin ContactForm 1.15 Cross-site Scripting vulnerability * SSCHADV2014-007 - Wordpress-Plugin Voter 1.3.3.2 Cross-site Scripting vulnerability