PHP remote file inclusion vulnerability in includes/generate-pdf.php in the WP ecommerce Shop Styling plugin for WordPress before 1.8 allows remote attackers to execute arbitrary PHP code via a URL in the dompdf parameter.Referenceshttp://www.securityfocus.com/bid/57768https://exchange.xforce.ibmcloud.com/vulnerabilities/81931http://wordpress.org/plugins/wp-ecommerce-shop-styling/changelog/http://secunia.com/advisories/51707http://osvdb.org/89921
