CyberSec.Space Logo
Back to CVE Browser

CVE-2013-0724

HIGH
7.5
CVSS Severity Score
EPSS Score0.0330%
EPSS Percentile39.80th
PublishedMay 27, 2014
Last ModifiedMay 6, 2026

Vulnerability Description

PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.

Affected Platforms (CPE)

πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

<= 1.7
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.0
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.2
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.3
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.4
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.5
πŸ“¦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.6

References & Advisories

πŸ”— http://osvdb.org/89921
πŸ”— http://secunia.com/advisories/51707
πŸ”— http://wordpress.org/plugins/wp-ecommerce-shop-styling/changelog/
πŸ”— http://www.securityfocus.com/bid/57768
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/81931
πŸ”— http://osvdb.org/89921
πŸ”— http://secunia.com/advisories/51707
πŸ”— http://wordpress.org/plugins/wp-ecommerce-shop-styling/changelog/

Related Vulnerabilities

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...