CyberSec.Space Logo
CVEブラウザに戻る

CVE-2013-0724

HIGH
7.5
CVSS Severity Score
EPSS Score0.0330%
EPSS Percentile39.80th
Published2014年5月27日
Last Modified2026年5月6日

Vulnerability Description

PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.

Affected Platforms (CPE)

📦
Wpshopstyling

Wp Ecommerce Shop Styling

<= 1.7
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.0
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.2
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.3
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.4
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.5
📦
Wpshopstyling

Wp Ecommerce Shop Styling

= 1.6

References & Advisories

🔗 http://osvdb.org/89921
🔗 http://secunia.com/advisories/51707
🔗 http://wordpress.org/plugins/wp-ecommerce-shop-styling/changelog/
🔗 http://www.securityfocus.com/bid/57768
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/81931
🔗 http://osvdb.org/89921
🔗 http://secunia.com/advisories/51707
🔗 http://wordpress.org/plugins/wp-ecommerce-shop-styling/changelog/

関連する脆弱性情報

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...