Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-8842

Malware in sbrugna...

4.3CVSS5.9AI score0.11897EPSS
Exploits5References4
Prion
Prion
added 2019/11/06 9:15 p.m.16 views

Design/Logic Flaw

The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmpppajaxcall with an execution target of wpinsertuser...

6.5CVSS7.2AI score0.47867EPSS
Exploits5References1Affected Software1
Prion
Prion
added 2019/11/06 9:15 p.m.14 views

Directory traversal

Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. dot dot in the file parameter...

4CVSS6.7AI score0.11897EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2019/11/06 8:34 p.m.141 views

CVE-2014-9013

Summary: CVE-2014-9013 affects the WordPress WP Marketplace plugin (version 2.4.0) and is triggered via the ajaxinit function in wpmarketplace/libs/cart.php. The vulnerability allows remote authenticated users to call wpmp_pp_ajax_call and, through the execution target wp_insert_user or related c...

8.8CVSS8.4AI score0.47867EPSS
Exploits5References1Affected Software1
Cvelist
Cvelist
added 2019/11/06 8:34 p.m.26 views

CVE-2014-9014

Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. dot dot in the file parameter...

4.7AI score0.11897EPSS
Exploits5References2
Rows per page
Query Builder