CVE-2014-9013

moderate-risk
Published 2019-11-06

The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmp_pp_ajax_call with an execution target of wp_insert_user.

Do I need to act?

!
17.7% chance of exploitation in next 30 days
EPSS score — higher than 82% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
2 public exploits available
36466, 36490
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Wpmarketplace Project

References (2)

Third Party Advisory https://www.exploit-db.com/exploits/36490/
Third Party Advisory https://www.exploit-db.com/exploits/36490/
48
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 13/34 · Low
Exposure 5/34 · Minimal