Lucene search
Kacper SzurekPATCHSTACK:F79824AE9C2ACB93B66C85A20855EEB5HistoryMar 22, 2015 - 12:00 a.m.
WordPress Marketplace Plugin 2.4.0 - Arbitrary File Download
2015-03-2200:00:00
Kacper Szurek
patchstack.com
8
0.077 Low
EPSS
Percentile
94.2%
Marketplace plugin is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files from the web server and get potentially sensitive information.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| marketplace | le | 2.4.0 |
References
Related
cvelist
cvelist
CVE-2014-9013
2019-11-06 20:34:16
prion
prion
Design/Logic Flaw
2019-11-06 21:15:00
zdt
zdt
Wordpress WP Marketplace 2.4.0 - Remote Code Execution (Add WP Admin) Vulnerability
2015-03-27 00:00:00
Wordpress WP Marketplace 2.4.0 Arbitrary File Download Vulnerability
2015-03-21 00:00:00
cve
cve
CVE-2014-9013
2019-11-06 21:15:10
nvd
nvd
CVE-2014-9013
2019-11-06 21:15:10
exploitpack
exploitpack
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download
2015-03-22 00:00:00
wpvulndb
wpvulndb
WP Marketplace <= 2.4.0 - Arbitrary File Download
2015-03-21 00:00:00
packetstorm
packetstorm
WordPress Marketplace 2.4.0 Arbitrary File Download
2015-03-25 00:00:00
exploitdb
exploitdb
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download
2015-03-22 00:00:00