Unrated severityNVD Advisory· Published May 27, 2014· Updated May 6, 2026

CVE-2013-0724

Description

PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.

Affected products

Wpshopstyling/Wp Ecommerce Shop Styling7 versions
cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.0:*:*:*:*:wordpress:*:*+ 6 more
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.0:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.2:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.3:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.4:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.5:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:1.6:*:*:*:*:wordpress:*:*
- cpe:2.3:a:wpshopstyling:wp-ecommerce-shop-styling:*:*:*:*:*:wordpress:*:*range: <=1.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000