2 matches found
WordPress WP ecommerce Shop Styling 'dompdf' Remote File Inclusion Vulnerability
WordPress WP ecommerce Shop Styling Plugin is prone to a remote file inclusion vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only C...
CVE-2013-0724
Overview: CVE-2013-0724 affects the WordPress WP e-Commerce Shop Styling plugin prior to v1.8, via a remote file inclusion in the PHP file includes/generate-pdf.php. The root cause is that the dompdf parameter can be controlled to include arbitrary PHP resources, enabling remote code execution on...