Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Download - CVE-2014-9014 - Vulnerability Database
WP Plugin Wp Marketplace

WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Download - CVE-2014-9014

Medium
Reference: CVE-2014-9014
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-9014
Title: WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Download
Overview:

WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently verify user-supplied input. This may allow an attacker to gain access to sensitive information which may aid in launching further attacks. WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution version 2.4.0 is vulnerable prior versions may also be affected.