Lucene search
HistoryMay 27, 2014 - 3:00 p.m.
CVE-2013-0724
cve-2013-0724
nvd
security
wordpress
php
vulnerability
remote code execution
file inclusion
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.2%
PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.
Affected configurations
Node
wpshopstylingwp-ecommerce-shop-stylingRange≤1.7wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.0wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.2wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.3wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.4wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.5wordpress
ORwpshopstylingwp-ecommerce-shop-stylingMatch1.6wordpress
Related
patchstack
patchstack
WordPress E-Commerce Shop Styling Plugin <= 1.7 - Remote File Inclusion
2013-01-02 00:00:00
cvelist
cvelist
CVE-2013-0724
2014-05-27 15:00:00
openvas
openvas
nvd
nvd
CVE-2013-0724
2014-05-27 14:55:03
wpvulndb
wpvulndb
WP e-Commerce Shop Styling <= 1.7.2 - Remote File Inclusion
2014-08-01 10:58:57
prion
prion
Remote file inclusion
2014-05-27 14:55:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.2%
Related for CVE-2013-0724