CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Cvelist•added 2019/11/06 8:34 p.m.•25 views

CVE-2014-9014

Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. dot dot in the file parameter...

4.7AI score0.11897EPSS

Exploits5References2

CVE•added 2019/11/06 8:34 p.m.•120 views

CVE-2014-9014

The CVE-2014-9014 entry corresponds to a directory traversal vulnerability in WP Marketplace (WordPress plugin) before 2.4.1. An authenticated user could exploit an improper file parameter handling in wpmarketplace/libs/cart.php (ajaxinit) to download arbitrary files via a .. path traversal. Publ...

4.3CVSS5.9AI score0.11897EPSS

Exploits5References2Affected Software1

exploitpack•added 2015/03/22 12:0 a.m.•53 views

WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download

WordPress Plugin Marketplace 2.4.0 - Arbitrary File Download Exploit Title: WP Marketplace 2.4.0 Arbitrary File Download Date: 26-10-2014 Software Link: https://wordpress.org/plugins/wpmarketplace/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website:...

6.5CVSS0.47867EPSS

Exploits6

0day.today•added 2015/03/21 12:0 a.m.•48 views

Wordpress WP Marketplace 2.4.0 Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Exploit Title: WP Marketplace 2.4.0 Arbitrary File Download Date: 26-10-2014 Software Link: https://wordpress.org/plugins/wpmarketplace/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website: http://security.szurek.pl/...

6.5AI score0.47867EPSS

Exploits6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by