Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress ‘WP ecommerce Shop Styling’插件“dompdf” 远程文件包含漏洞
Vulnerability Description
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。WP ecommerce Shop Styling是其中的一个用于自定义WP电子商务网站的插件。 WordPress 1.7及之前版本的WP ecommerce Shop Styling插件中的includes/generate-pdf.php脚本存在PHP远程文件包含漏洞。远程攻击者可借助‘dompdf’参数中的URL利用该漏洞执行任意PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A