cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2014-9013,https://securityvulnerability.io/vulnerability/CVE-2014-9013,,The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmp_pp_ajax_call with an execution target of wp_insert_user.,Wordpress,WPmarketplace,8.8,HIGH,0.025280000641942024,false,,false,false,false,,false,false,2019-11-06T20:34:16.000Z,0
CVE-2014-9014,https://securityvulnerability.io/vulnerability/CVE-2014-9014,,Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. (dot dot) in the file parameter.,Wordpress,WPmarketplace,4.3,MEDIUM,0.0018100000452250242,false,,false,false,false,,false,false,2019-11-06T20:34:10.000Z,0