5 matches found
CVE-2014-9013
The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmpppajaxcall with an execution target of wpinsertuser...
CVE-2014-9013
The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmpppajaxcall with an execution target of wpinsertuser...
CVE-2014-9013
Summary: CVE-2014-9013 affects the WordPress WP Marketplace plugin (version 2.4.0) and is triggered via the ajaxinit function in wpmarketplace/libs/cart.php. The vulnerability allows remote authenticated users to call wpmp_pp_ajax_call and, through the execution target wp_insert_user or related c...
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download
WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download Exploit Title: WP Marketplace 2.4.0 Arbitrary File Download Date: 26-10-2014 Software Link: https://wordpress.org/plugins/wpmarketplace/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website:...
Wordpress WP Marketplace 2.4.0 Arbitrary File Download Vulnerability
Exploit for php platform in category web applications Exploit Title: WP Marketplace 2.4.0 Arbitrary File Download Date: 26-10-2014 Software Link: https://wordpress.org/plugins/wpmarketplace/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website: http://security.szurek.pl/...